WordPress 5.7.1 was released on April 16 as a security update. It contains two security fixes and 26 bug fixes. The security issues affect all versions of WordPress above 4.7, therefore there are additional updates for every major version of WordPress.
The security issues are:
- XXE vulnerability within the media library affecting PHP 8.
- Data exposure vulnerability within the REST API.
You should update your website as soon as possible to prevent hackers from exploiting those vulnerabilities.
Remember to create a backup before installing updates.
