WordPress Admins: Upgrade from 4.7.0 or 4.7.1
Anyone administering a self-maintained installation of the WordPress content management system should check what version they are running, and upgrade immediately if it is WordPress 4.7.0 or 4.7.1. These are vulnerable to an exploit that is easily run remotely and allows privilege escalation to unauthorized users. Sites hosted via the CU Blog service are not affected by this problem because the vendor, CampusPress, is running the safe 4.7.2 version.
For details about the problem and instructions for how to upgrade, visit: