If you have not already updated your WordPress websites to WordPress 4.7.2, you need to do so immediately.
In this security disclosure, an Unauthenticated Privilege Escalation Vulnerability in a REST API Endpoint vulnerability was disclosed to exist in WordPress 4.7 and 4.7.1. This vulnerability allows attackers to bypass standard WordPress security measures in order to change content. Because of the significance of this vulnerability, we strongly recommend you update your WordPress websites to WordPress 4.7.2 as quickly as possible.
Updating to WordPress 4.7.2
While WordPress 4.7.2 was released as an autoupdate, confirm your sites have been updated successfully. You’ll find the WordPress 4.7.2 update available from your WordPress dashboard. Visit the Updates page by clicking the icon in the top navigation bar. As always, it’s a good idea to run a WordPress backup before updating.
With WordPress now powering 27% of all websites on the internet, it has become more of a target for nasty bots that look for vulnerabilities. WordPress websites ideally need monthly maintenance to ensure that the software (WordPress itself and plugins) is updated to mitigate vulnerabilities.
If you need assistance with your WordPress website or would like someone to manage this for you visit https://hosting.dreamartdesigns.com for more information.