Keeping your website software up to date is probably the single most important step for a secure website. Out of date software can make it easier for hackers to find ways to break into your website. For more information, see Software Maintenance & Website Security.
WordPress & Joomla Release Summary
August 2017
There was 1 WordPress release in August.
Current release: 4.8.1 – NEW – Release date: August 2, 2017
More WordPress info
Quick overview of v4.8.1:
Maintenance release containing 29 maintenance fixes and enhancements
SECURITY RELEASE means that security vulnerabilities have been found in the software and will be fixed by this release. To protect your site from hackers and malware, you should update to this release as soon as possible.
Keeping your website software up to date is probably the single most important step for a secure website. Out of date software can make it easier for hackers to find ways to break into your website. For more information, see Software Maintenance & Website Security.
WordPress & Joomla Release Summary
July 2017
There were no WordPress releases in July.
Current release: 4.8 – Release date: June 8, 2017
More WordPress info
Quick overview of v4.8:
This release contains several feature updates including:
Updated/new widgets for: Image, Video, Audio, Rich Text which simplify the process of adding and maintaining.
Link Boundries – improved creation and handling of links in posts and pages.
Nearby WordPress Events – is a new item added to the Dashboard to inform WordPress admins of WordPress events around their area.
Misc. updates – More Accessible Admin Panel Headings, Removal of Core Support for WMV and WMA Files, Multisite Updates, Text-Editor JavaScript API, Media Widgets API, Customizer Width Variable
SECURITY RELEASE means that security vulnerabilities have been found in the software and will be fixed by this release. To protect your site from hackers and malware, you should update to this release as soon as possible.
Keeping your website software up to date is probably the single most important step for a secure website. Out of date software can make it easier for hackers to find ways to break into your website. For more information, see Software Maintenance & Website Security.
WordPress & Joomla Release Summary
June 2017
Current release: 4.8 – NEW – Release date: June 8, 2017
More WordPress info
Quick overview of v4.8:
This release contains several feature updates including:
Updated/new widgets for: Image, Video, Audio, Rich Text which simplify the process of adding and maintaining.
Link Boundries – improved creation and handling of links in posts and pages.
Nearby WordPress Events – is a new item added to the Dashboard to inform WordPress admins of WordPress events around their area.
Misc. updates – More Accessible Admin Panel Headings, Removal of Core Support for WMV and WMA Files, Multisite Updates, Text-Editor JavaScript API, Media Widgets API, Customizer Width Variable
SECURITY RELEASE means that security vulnerabilities have been found in the software and will be fixed by this release. To protect your site from hackers and malware, you should update to this release as soon as possible.
Keeping your website software up to date is probably the single most important step for a secure website. Out of date software can make it easier for hackers to find ways to break into your website. For more information, see Software Maintenance & Website Security.
WordPress & Joomla Release Summary
May 2017
Current release: 4.7.5 – NEWSECURITY RELEASE – Release date: May 16, 2017
More WordPress info
Quick overview of v4.7.5:
This release contains 6 security fixes and 3 maintenance fixes. The security issues are:
Insufficient redirect validation in the HTTP class.
Improper handling of post meta data values in the XML-RPC API.
Lack of capability checks for post meta data in the XML-RPC API.
A Cross Site Request Forgery (CSRF) vulnerability was discovered in the filesystem credentials dialog.
A cross-site scripting (XSS) vulnerability was discovered when attempting to upload very large files.
A cross-site scripting (XSS) vulnerability was discovered related to the Customizer.
SECURITY RELEASE means that security vulnerabilities have been found in the software and will be fixed by this release. To protect your site from hackers and malware, you should update to this release as soon as possible.
Keeping your website software up to date is probably the single most important step for a secure website. Out of date software can make it easier for hackers to find ways to break into your website. For more information, see Software Maintenance & Website Security.
WordPress & Joomla Release Summary
April 2017
Current release: 4.7.4 – NEW – Release date: April 20, 2017
More WordPress info
Quick overview of v4.7.4:
This release contains 47 maintenance fixes and enhancements, chief among them an incompatibility between the upcoming Chrome version and the visual editor, inconsistencies in media handling, and further improvements to the REST API.
SECURITY RELEASE means that security vulnerabilities have been found in the software and will be fixed by this release. To protect your site from hackers and malware, you should update to this release as soon as possible.
Keeping your website software up to date is probably the single most important step for a secure website. Out of date software can make it easier for hackers to find ways to break into your website. For more information, see Software Maintenance & Website Security.
WordPress & Joomla Release Summary
March 2017
Current release: 4.7.3 – NEWSECURITY RELEASE – Release date: March 6, 2017
More WordPress info
Quick overview of v4.7.3:
This release contains 39 maintenance fixes to the 4.7 release series.
And it fixes 6 security issues:
Cross-site scripting (XSS) via media file metadata.
Control characters can trick redirect URL validation.
Unintended files can be deleted by administrators using the plugin deletion functionality.
Cross-site scripting (XSS) via video URL in YouTube embeds.
Cross-site scripting (XSS) via taxonomy term names.
Cross-site request forgery (CSRF) in Press This leading to excessive use of server resources.
SECURITY RELEASE means that security vulnerabilities have been found in the software and will be fixed by this release. To protect your site from hackers and malware, you should update to this release as soon as possible.
Keeping your website software up to date is probably the single most important step for a secure website. Out of date software can make it easier for hackers to find ways to break into your website. For more information, see Software Maintenance & Website Security.
WordPress & Joomla Release Summary
February 2017
There were no WordPress releases in February.
Current release: 4.7.2 – SECURITY RELEASE – Release date: January 26, 2017
More WordPress info
Quick overview of v4.7.2:
Fixes 3 security issues
The user interface for assigning taxonomy terms in Press This is shown to users who do not have permissions to use it.
WP_Query is vulnerable to a SQL injection (SQLi) when passing unsafe data.
A cross-site scripting (XSS) vulnerability was discovered in the posts list table.
SECURITY RELEASE means that security vulnerabilities have been found in the software and will be fixed by this release. To protect your site from hackers and malware, you should update to this release as soon as possible.
Keeping your website software up to date is probably the single most important step for a secure website. Out of date software can make it easier for hackers to find ways to break into your website. For more information, see Software Maintenance & Website Security.
WordPress & Joomla Release Summary
January 2017
There were 2 security releases in January. By default, a security release will be applied automatically if you are on WordPress 3.7 or higher.
Current release: 4.7.2 – NEWSECURITY RELEASE – Release date: January 26, 2017
More WordPress info
Quick overview of v4.7.2:
Fixes 3 security issues
The user interface for assigning taxonomy terms in Press This is shown to users who do not have permissions to use it.
WP_Query is vulnerable to a SQL injection (SQLi) when passing unsafe data.
A cross-site scripting (XSS) vulnerability was discovered in the posts list table.
SECURITY RELEASE means that security vulnerabilities have been found in the software and will be fixed by this release. To protect your site from hackers and malware, you should update to this release as soon as possible.
Keeping your website software up to date is probably the single most important step for a secure website. Out of date software can make it easier for hackers to find ways to break into your website. For more information, see Software Maintenance & Website Security.
WordPress & Joomla Release Summary
December 2016
Current release: 4.7 – NEW – Release date: December 6, 2016
SECURITY RELEASE means that security vulnerabilities have been found in the software and will be fixed by this release. To protect your site from hackers and malware, you should update to this release as soon as possible.
Strong passwords are key to keeping our online personal information and all types of sensitive data secure. A strong password is also important for keeping your own website, be it WordPress or Joomla, secure and safe from hacker intrusions.
We are required to have an ever-growing number of passwords for an ever-growing number of websites, apps, services, etc. One option is to use one easy to remember password for everything. The problem with that approach is hackers are on to that one. They will automatically try the same login information on multiple sites to see if it works. They will also try every common password known to man. I’m sure you’ve seen the multiple lists of terrible passwords to avoid at all costs.
The best passwords are the ones you cannot possibly guess… or even remember.
They should be long, the longer the better. If a site has a maximum password length, use it.
They should be complex, containing a mixture of upper and lower case letters, symbols and numbers.
They should be different for every site you access.
So how can we possibly manage all these secure, unmemorizable passwords?