The long-awaited release of WordPress 5.8.3 is released, and this security release has four security fixes. Since this is a secure version, it is recommended that you update your site immediately. All versions since WordPress 3.7 have also been updated.
WordPress 5.8.3 is a short-term security release. The next major release will be version 5.9, which is already in the release candidate stage. You can update to WordPress 5.8.3 by downloading or accessing your dashboard → update from WordPress.org and clicking Update Now. If your site supports automatic background updates, they may already have automatic start updates turned on.
Security updates
There are four security issues that affect versions of WordPress between 3.7 and 5.8. If you haven’t updated to 5.8, all WordPress versions since 3.7 have also been updated to fix the following security issues (unless otherwise noted):
· Support was expressed to Karim El Ouerghemmi and Simon Scannell of SonarSource, who disclosed the problems with storage XSS via post slug.
· Simon Scannell, which supports SonarSource, has reported some object injection issues in multi-site installations.
· Ngocnb and khuyenn from GiaroHangTietKiem JSC have teamed up with the Trend Micro Zero Day Initiative to report a prop for SQL injection vulnerabilities in WP_Query.
· Ben Bidner from the WordPress security team reported a SQL injection vulnerability in WP_Meta_Query (only related to versions 4.1-5.8).
WordPress 5.8.3 update upgrade
The method of updating is extremely simple:
Method 1: In the WordPress website background of the [ Dashboard > Update ] page, direct online update;
Method 2: Download the latest version on the WordPress official website and upload the update via FTP;
If you would like to download it through the official website, then the address is here:
website
