01/26/2017 10:25 PM EST
Original release date: January 26, 2017 | Last revised: February 01, 2017
WordPress 4.7.1 and prior versions are affected by multiple vulnerabilities. A remote attacker could exploit some of these vulnerabilities to take control of an affected website.
On February 1, WordPress disclosed an additional vulnerability that is fixed in version 4.7.2.
US-CERT encourages users and administrators to review the WordPress Security Release and upgrade to