January 6, 2016 – WordPress 4.4.1 has been released. This security update fixes a cross-site scripting vulnerability that could allow a site to be compromised. The vulnerability affects WordPress versions 4.4 and earlier and it is recommended to update your WordPress website immediately.
WordPress 4.4.1 also resolves 52 non-security bug fixes:
- Latest emoji characters have been updated, including the new diverse emoji:
- Resolved OpenSSL communication issues with older versions and other services provided through some plugins.
- Resolved 4.4 issue where post URL being used could redirect to the wrong post when custom field set to wp_old_slug (older page moves using a new slug).
For more information, see the release notes or the full list of changes.
Download WordPress 4.4.1 or venture over to your website’s Dashboard → Updates and simply click “Update Now.” Sites that support automatic background updates are already beginning to update to WordPress 4.4.1.
As always, before updating WordPress or any plugins, be sure to backup your website database. For production environments with business needs, it is always a best practice to apply the new updates on a staging server to test the site prior to updating on the live site in case any updates are not playing well together with current website configurations, plugins, or themes in order to prevent website downtime, functionality issues, or any other unwanted results.
If you need help updating to WordPress 4.4.1 and getting your WordPress website up-to-date and current with the latest security updates and active security protection, or need help fixing your website from a broken update, we can help! Contact Us.