Wordpress 4.1.2 was just released which includes security fixes. A larger number of plugins were also updated yesterday to address security issues. More details:

WordPress 4.1.2 Security Release – WordPress News
https://wordpress.org/news/2015/04/wordpress-4-1-2/

Security Advisory: XSS Vulnerability Affecting Multiple WordPress Plugins
https://blog.sucuri.net/2015/04/security-advisory-xss-vulnerability-affecting-multiple-wordpress-plugins.html
Multiple WordPress Plugins are vulnerable to Cross-site Scripting (XSS) due to the misuse of the add_query_arg() and remove_query_arg() functions. These are popular functions used by…


Please login to your Wordpress instances and make sure everything has been updated. It's a good idea to do this at least once a week regardless.