Wordpress 4.1.2 was just released which includes security fixes. A larger number of plugins were also updated yesterday to address security issues. More details:

WordPress 4.1.2 is now available. This is a critical security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.1.1 and earlier …

Multiple WordPress Plugins are vulnerable to Cross-site Scripting (XSS) due to the misuse of the add_query_arg() and remove_query_arg() functions. These are popular functions used by…


Please login to your Wordpress instances and make sure everything has been updated. It's a good idea to do this at least once a week regardless.