WordPress, the most popular content management system on the web, is being used by millions of blogs and web sites.
Due to its widespread use, it’s also a primary target for attacks for vulnerabilities by unscrupulous hackers.
Luckily, the WordPress system is also programmed by a well-versed community of researchers; when vulnerabilities are discovered, they are usually patched quickly and an update to WordPress is issued.
One such incident sent programmers scrambling overnight, as four security issues – one of them, critical – were patched and version 4.1.2 of WordPress is now available.
The patch primarily addresses a method that exposed the core files and various plug-ins to a cross-site scripting vulnerability, enabling anonymous hackers to assault and compromise a web site.
If your system is setup to update automatically, then you are good to go; otherwise, click on the Update WordPress link made available to your admin panel to update it manually.
More details about the WordPress 4.1.2 Security Release update can be found here.
My sites are always under attack, as well as up to date plugins/themes I use WordPress Firewall 2 and acunetix security plugins, so far so good