Let’s update! WordPress 5.4.1 is now available for the general public to test. The update rolled out yesterday as a Security and Maintenance Release. The release is for all the previous versions of WordPress. Therefore I recommend you have this update first tested and then applied to your WordPress site without delay. First of all read my step by step guide in the article on How to Manually Update A New Version Of WordPress In Your Synology NAS. mariushosting.com has already installed the latest WordPress 5.4.1
The WordPress 5.4.1 Security and Maintenance release includes 17 bug fixes and 7 security fixes. The update is crucial as it includes security updates. So, go ahead and test right away!
Security Issues fixed in WordPress 5.4.1
- Password reset tokens were not properly invalidated.
- Certain private posts viewed unauthenticated.
- An XSS issue in the Customizer.
- Issue in the search block.
- An XSS issue in wp-object-cache.
- An XSS issue in file uploads.
- Stored XSS vulnerability in the WordPress Customizer.
According to the official announcement post, WordPress 5.4.1 Security and Maintenance release is a short-cycle release and the next major release is going to be WordPress 5.5
You can check out the changelog to learn more about the changes in this release.