This is an extremely important announcement and if you have not already done so, you need to take action now.
In the last two weeks, over 50,000 WordPress websites have been hacked due to a major security vulnerability that was discovered in the WordPress REST API.
(But we are delighted to be able to report that none of the sites protected by WP Site Wizard was compromised during these attacks).
The WordPress core team silently fixed the issue and pushed out the WordPress 4.7.2 update.
If you have not yet updated your WordPress site to 4.7.2, then you should do so immediately.
With this vulnerability, anyone on the internet can deface your website without having the login access – it’s that serious!