Automattic (the web development corporation) has identified a serious SQL injection vulnerability flaw in WordPress that has now been patched in WordPress version 4.8.3.
Security Risk: High
Recommended Action:
1. Update any WordPress site immediately to version 4.8.3
2. Enable automatic updates on WordPress sites
WordPress websites and blogs hosted by CTLT
If your WordPress website is hosted by CTLT cms.ubc.ca, or your blog is hosted on blogs.ubc.ca, CTLT has addressed the upgrade already.
Additional Information
https://wordpress.org/news/2017/10/wordpress-4-8-3-security-release/
If you have any questions, please contact security@ubc.ca