January 31, 2024
The latest version of WordPress, 6.4.3, became available on Pantheon as of January 30, 2024.
Highlights
- Security updates: Addressed two security vulnerabilities, including a PHP file upload bypass (limited to administrators), and a object injection mechanism that could be used to exploit an existing Remote Code Execution (RCE) vulnerability. Since this release fixes security vulnerabilities, users are urged to upgrade their sites immediately. For a detailed analysis of the two security patches, see this article from Patchstack.
- 5 bug fixes in Core
- 16 bug fixes in the Block Editor
Upgrade to WordPress 6.4.3 right from your Pantheon dashboard or Terminus for added security.