WordPress 4.9.7 Security and Maintenance Release is now available. This security and maintenance release was issued by WordPress and is for all the previous versions. WordPress suggests strongly that you have this update applied to your WordPress website without delay and so do we.
The previous versions of WordPress are affected by a media issue where a user with the capability to edit and delete media files could potentially manipulate media metadata to attempt to delete files outside the uploads directory.
Other than that, WordPress 4.9.7 Security and Maintenance Release has included 17 bug fixes. Some of which are:
- Taxonomy: Improve cache handling for term queries.
- Posts, Post Types: Clear post password cookie when logging out.
- Widgets: Allow basic HTML tags in sidebar descriptions on Widgets admin screen.
- Community Events Dashboard: Always show the nearest WordCamp if one is coming up, even if there are multiple Meetups happening first.
You can check out the full list of changelog to learn more about the changes in WordPress 4.9.7.
You can download WordPress 4.9.7 Security and Maintenance Release or venture over to Dashboard > Updates and simply click “Update Now.”
Websites that support automatic background updates are already beginning to update to WordPress 4.9.7.
Aaron has also thanked everyone who were involved in contributing WordPress 4.9.7.
The previously scheduled 4.9.7 is now referred to as 4.9.8 and will follow the release schedule posted on July 4, 2018.