WordPress 4.7.5 Security & Maintenance Release – Immediate Update Recommended

WordPress 4.7.5 Security & Maintenance Release

WordPress 4.7.5 is now available which addresses six different security fixes. It is highly recommended to update immediately. The fixes are as follows:

  1. Insufficient redirect validation in the HTTP class.
  2. Improper handling of post meta data values in the XML-RPC API.
  3. Lack of capability checks for post meta data in the XML-RPC API.
  4. A Cross Site Request Forgery (CRSF) vulnerability was discovered in the filesystem credentials dialog.
  5. A cross-site scripting (XSS) vulnerability was discovered when attempting to upload very large files.
  6. A cross-site scripting (XSS) vulnerability was discovered related to the Customizer.

In addition, WordPress 4.7.5 contains 3 maintenance fixes to the 4.7 release series.

So head over to your Dashboard and make an update immediately. Simply click on the “Update Now” button. You can also, download WordPress 4.7.5 if you want manual updates.

That’s all, enjoy.

Let me know your thoughts in the comment section below.


About the Author:

Rodney Lacambra is the founder and editor of WPMakeSite Blog and is a freelance WordPress Developer by profession. Learn more about him here and connect with him on Facebook, Twitter, Google+ and LinkedIn.


  1. Mohammad Azam August 5, 2017 at 5:54 am - Reply

    very nice and awesome topic
    Thank you so much for this walkthrough. Currently, implemented SSL on one of my sites lately and got no issues.

    Also, if you have activated the Better Search & Replace plugin, it is highly recommended to removed it once you are done using it.

    Thanks again for this awesome article.

    • Rodney Lacambra August 5, 2017 at 6:59 am - Reply

      Thanks for dropping by, Mohammad.

      Glad you already did. And yes, one should deact/removed it once done. It is not recommended to just leave it there.


Leave A Comment


Wait! Don't go just yet.

Get more WordPress tips only shared with email subscribers. Just enter your name and email address below.

This information will never be shared for third part