Last week a critical security problem was found in the popular Akismet anti-spam plugin that comes installed by default with WordPress. If you haven’t updated already, please do it today! Version 3.1.5 was released on Thursday.
Another XSS security issue was found today in the popular poly-plugin Jetpack and the Twenty Fifteen default theme. Both use a set of web icons for blogs called Genericons and this is where the issue lies – an insecure file within the Genericons package.
WP Minder clients, you’re already patched.