“WordPress 4.9.5 Security and Maintenance Release”
This is a security and maintenance release for all versions since WordPress 3.7. We strongly encourage you to update your sites immediately.
WordPress versions 4.9.4 and earlier are affected by three security issues. As part of the core team’s ongoing commitment to security hardening, the following fixes have been implemented in 4.9.5:
- Don’t treat localhost as same host by default.
- Use safe redirects when redirecting the login page if SSL is forced.
- Make sure the version string is correctly escaped for use in generator tags.
Twenty-five other bugs were fixed in WordPress 4.9.5. Particularly of note were:
- The previous styles on caption shortcodes have been restored.
- Cropping on touch screen devices is now supported.
- A variety of strings such as error messages have been updated for better clarity.
- The position of an attachment placeholder during uploads has been fixed.
- Improved compatibility with PHP 7.2.
For more details on 4.9.5 go here.
Download WordPress 4.9.5 or venture over to Dashboard → Updates and simply click “Update Now.”
WordPress Updating Tips
When updating WordPress themes or plugins following the simple steps below can save you some headaches. With full revision updates (for example: 3.x to 4.0):
Doing a quick double-check with theme and plugin developers *before* updating to see if they have any concerns or comments about your theme and the new version is wise. If you are using quality a theme and plugins the developer(s) will be on top of this.
To help you safely and easily update to the most recent version of WordPress.
Before you update we need to do a little housekeeping:
- Save your WordPress XML file to your hard drive. You do this by clicking on the Tools icon in the left sidebar and then Export. On the next screen click on Download Export File. You might want to create a new Folder on your hard drive where you keep all your Website files. Name it WP Backup so you know to save all backup files for WP there (and you’ll know where to find them if you need them). It is a good idea to back up this file once a month anyway regardless if an update is needed.
- Backup your WordPress database. If you are on a Managed WordPress Hosting platofrm, go to your hosting Dashboard and create a backup-point there. On most WordPress Managed hosts you can create a “backup-point” in your hosting dashboard which backs up your site at that moment in time. If you are on shared hosting, there is a nifty plugin that makes this process a no-brainer, WP-DBManager. This plugin is also a must have for repairing and optimizing your database (which you should be doing minimally monthly to keep things running smoothly).
- FTP into your Web hosting server and download a copy of your database backup so you have a copy off your server. That backup won’t do you any good if the server crashes or has issues. Even better, store the backup file in the cloud or on an external drive in case you have computer problems.
- Cover all the bases and download your theme/framework/child theme folders to your local hard drive. This is just good practice if you have customized any theme files.
- Then, to be safe, deactivate all plugins before upgrading.
It is a good idea to review my article:
WordPress How To: Do the Mother of All Backups
Don’t forget to reactivate and update your plugins. You’ll see with each WordPress update that plugin developers also update their plugins which you can also do with one click. You’ll see the nag bar under the plugin name in the plugins area with a link to “update now.”
If you find after an update that something is not working as it was, go through the systematic process of deactivating your plugins one at a time until you find the culprit. If the developer has not updated his/her plugin to work with the lasted update, find another plugin whose developer is on top of these things! [READ: How to Easily Fix a WordPress White Screen (and Troubleshoot for Conflicts)]
Updating should not be ignored or put off. When you keep up with WordPress, have a Premium Theme and Plugin updates, you are not only keeping up with technology, but you make sure your site is secure and functioning error free.
At your service,