今天在登录WordPress后台的时候有看到有新的WordPress 4.8.3版本升级提示,原本根据计划会在11月份有较大版本升级的,可以看到这次的升级是安全更新,而且官方建议是立即升级。
WordPress 4.8.3 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately.
WordPress versions 4.8.2 and earlier are affected by an issue where $wpdb->prepare() can create unexpected and unsafe queries leading to potential SQL injection (SQLi). WordPress core is not directly vulnerable to this issue, but we’ve added hardening to prevent plugins and themes from accidentally causing a vulnerability.
本文来自:https://wordpress.org/news/2017/10/wordpress-4-8-3-security-release/。如果我们需要升级请做好备份,然后后台直接升级或者手工升级(参考:WordPress程序自动与手动升级新版本的操作过程)