WordPress 4.0.1 – Critical security release

The WordPress 4.0.1 security update has been released today, which addresses 8 security flaws including cross-site scripting (XSS) and denial of service exploits. In addition, 23 bugs in the 4.0 release have been fixed.

It is highly recommended that anyone running WordPress have their installations updated as soon as possible.

Further information can be found at:

https://core.trac.wordpress.org/query?milestone=4.0.1