WordPress 6.9.4 has been released following the discovery that several security fixes from 6.9.2 and 6.9.3 were not fully applied. This update includes the remaining patches needed to properly address multiple vulnerabilities, including a PclZip path traversal issue, an authorization bypass in the Notes feature, and an XXE vulnerability in the external getID3 library. Because this is a security release, all site owners are strongly encouraged to update immediately. Full details are available in the official WordPress 6.9.4 announcement.
Continue Reading This Article At Source – Read More (Releases – WordPress News)