WordPress has released Version 4.2.2 which is a security update for all previous WordPress versions, and a maintenance release for versions 4.2 and newer.
https://codex.wordpress.org/Version_4.2.2
This update fixes a XSS vulnerability disclosed by Sucuri.
https://blog.sucuri.net/2015/05/jetp...based-xss.html
Note: FutureQuest has scanned the Community Servers for any
packages with wp-content/themes/twentyfifteen/genericons/example.html
in the account and we have administratively disabled example.html
We will send a notice to all site owners affected by the above action shortly.
It is strongly recommended that all sites running WordPress update to Version 4.2.2 as soon as
possible as well as update any plugins that the Dashboard shows a newer version available for.
As always FutureQuest encourages anyone running any scripts, such as
WordPress, to ensure they maintain the most up to date version and install
any patches released to reduce the chances of a compromise of your site.
This also includes any plugins, addons and themes...
It is always best to subscribe to any Security or Update mailing list provided
by the Authors of the script(s) you are running.
The FutureQuest Team