WordPress has recently released its latest update: WordPress 3.6.1 version. This is a security release for all previous versions. According to WordPress.org, the security fixes include:
- Block unsafe PHP unserialization that could occur in limited situations and setups, which can lead to remote code execution.
- Prevent a user with an Author role, using a specially crafted request, from being able to create a post “written by” another user.
- Fix insufficient input validation that could result in redirecting or leading a user to another website.
To update, log in to your WordPress dashboard and the update button is listed on top of the browser. To learn more about the update, please read this blog post from WordPress.org