A security update to the stable branch of WordPress (3.9.2) was just released.

This update mainly addresses an issue that could be used to trigger a Denial of Service (DoS) attack with PHP’s XML processor. There have also been changes that harden WordPress core, protect against potential code execution while processing widgets and add protections against brute force attacks.

You can check out further technical details about the update in the official blog post on WordPress.org.

Because your site’s security is exceedingly important to us, our team is already in the process of auto-updating all sites hosted with WP Engine to this new version of WordPress.

So what do you need to do? As long as your site is hosted here, nothing! In fact, your site should be running WordPress 3.9.2 in no time.

If you have any questions about this upgrade, or the update process in general, please contact our support team.

Thanks again for choosing WP Engine!