Just days after the release of WordPress 4.2 “Powell”, WordPress has now released version 4.2.1. Where Powell was released full of gifts for users, version 4.2.1 addresses a fairly major issue that has been detected. WordPress 4.2.1 is a critical security release for all previous versions – and, echoing the requests of WordPress, we strongly encourage all WordPress users to update their sites immediately. The release patches an exploit vulnerability that allowed hackers to compromise a website using the Comments feature.
WordPress 4.2.1 can be updated via your WordPress dashboard, or via manual download on the WordPress site.