WP Core Vulnerability SEP 2021:
Version 5.8.1
For your WordPress protection, be informed about the LATEST WP Core Vulnerability SEP 2021. 3 security issues affects WordPress versions between 5.4 and 5.8. If you haven’t yet updated to 5.8, all WordPress versions since 5.4 have also been updated to fix the following security issues:
- WordPress 5.4 to 5.8 - Data Exposure via REST API
- Props @mdawaffe, member of the WordPress Security Team for their work fixing a data exposure vulnerability within the REST API.
- WordPress 5.4 to 5.8 - Authenticated XSS in Block Editor
- Props to Michał Bentkowski of Securitum for reporting a XSS vulnerability in the block editor.
- WordPress 5.4 to 5.8 - Lodash Library Update
- The Lodash library has been updated to version 4.17.21 in each branch to incorporate upstream security fixes.