WordPress 4.4.2 is  now available for download. Users are strongly urged to update as soon as possible!

This update addresses two security issues: A possible XSS for certain local URIs and an open redirection attack. According to the announcement, all versions of WordPress preceding 4.4.2 are affected. The issues were reported by Ronni Skansing and Shailesh Suthar, respectively.

4.4.2 also addresses 17 bugs found in 4.4.1 and 4.4 including,

  • wp_list_comments ignores $comments parameter
  • Pagination issue on front page after 4.4.1
  • ModSecurity2 blocks Potential Obfuscated JavaScript in outbound anomaly

You can update to 4.4.2 in the dashboard or download it directly. If your site supports auto updates, the upgrade will push automatically.

Marie Dodson

Marie is the editor at Torque. She enjoys reading good books, drinking good wine, and traveling to fun places.

The post WordPress 4.4.2 Security And Maintenance Update Now Available appeared first on Torque.

Share This