Time for WordPress Security Update
Wordpress has released a security and maintenance update that affects Wordpress versions 4.7 through 5.7. This update fixes 26 code errors, including a media library XXE vulnerability affecting PHP 8 and a data vulnerability within the REST API. To access the details of these errors here.
Urgent updating of this vulnerability is recommended.
Updates can be made by downloading the update from wordpress.org or by going to "Control Panel" > "Updates".
If the automatic update feature is active, the update may have been made, but it is still recommended to check.
Source:
wordpress.org
