xbiz world
xbiz premiere

WordPress Releases Critical Security Update

LOS ANGELES — Less than a week after the release of WordPress Version 4.2, a critical security update was released today — along with an admonition for all users to immediately update their installations.

Debuting on April 23, with a goal of improving WordPress’ communication, sharing and simplicity, Version 4.2, nicknamed “Powell” in honor of jazz pianist Bud Powell, offers easier ways to share content, while providing extended character support, enhanced embed options, and streamlined plugin updates.

Now, an emergency patch, Version 4.2.1, has been released to the public and is an update for all previous WordPress versions. The patch addresses a cross-site scripting vulnerability that could enable comment posters to compromise a site.

As for who is affected by this vulnerability, all WordPress-powered sites are at risk if they allow users to post comments via the integrated commenting system.

“An attacker could leverage a bug in the way comments are stored in the site’s database to insert malicious scripts on your site, thus potentially allowing them to infect your visitors with malware, inject SEO spam or even insert backdoor in the site’s code if the code runs when in a logged-in administrator browser,” Marc-Alexandre Montpas wrote for Sucuri.net, advising WordPress site admins to “definitely disable comments on your site until a patch is [installed] to protect your site and customers.”

The unexpected update fuels critics that claim the Open Source WordPress core lacks security, but the opposite is true: As the world’s most popular publishing platform, WordPress is actively embraced by tens of thousands of developers and used in countless websites, making its underlying code perhaps the most scrutinized software on the planet. This means that vulnerabilities are revealed and mitigated far more often than those contained in proprietary systems that are only well-known to a relative handful of developers and users.

WordPress 4.2.1 is now rolling out as an automatic update for sites that support them.

To manually update an installation, download WordPress 4.2.1 or click “Update Now” from the admin Dashboard. 

Related:  

Copyright © 2026 Adnet Media. All Rights Reserved. XBIZ is a trademark of Adnet Media.
Reproduction in whole or in part in any form or medium without express written permission is prohibited.

More News

SWR Data Publishes 'Clip Trend' Report

Adult industry market research outfit SWR Data has published a report on the performance of clip platforms and sales.

Another German Court Rejects Blocking Orders Against Pornhub, YouPorn

A German court has blocked the Rhineland-Palatinate Media Authority (MA RLP) from forcing telecom providers based within the court’s jurisdiction to cut off access to Aylo-owned adult sites Pornhub and YouPorn.

Ofcom Fines Kick Online Entertainment $1 Million for AV Noncompliance

U.K. media regulator Ofcom on Thursday fined Kick Online Entertainment 800,000 pounds (more than $1 million) for failing to implement age checks as required for compliance with the Online Safety Act.

FSC Details Legislative Outlook for 2026

The Free Speech Coalition (FSC) has laid out the legislative outlook for the industry in 2026.

AEBN Publishes Popular Searches by Country for December, January

AEBN has released the list of popular searches from its straight and gay theaters, by country, for December and January.

Jim Austin Joins CrakRevenue Team

Strategist Jim Austin has been hired by CrakRevenue.

Judge Dismisses NCOSE-Backed Suits Against Adult Sites Over Kansas AV Law

A federal judge on Tuesday dismissed lawsuits brought against two adult websites in Kansas for alleged violations of the state’s age verification law.

Aylo/SWOP Panel Spotlights Creators' Struggle for Digital, Financial Rights

Aylo and Sex Workers Outreach Project (SWOP) Behind Bars presented, on Tuesday, an online panel on creators’ rights, debanking and deplatforming.

AV Bulletin: Canada, Italy, Australia Updates

Since the Supreme Court’s decision in Free Speech Coalition v. Paxton, more state age verification laws have been enacted around the United States, as well as proposed at the federal level and in other countries. This roundup provides an update on the latest news and developments on the age verification front as it impacts the adult industry.

Holly Randall Soft Launches 'Wet Ink' Magazine

Holly Randall has officially soft-launched the creator-focused publication Wet Ink Magazine.

Show More