A serious security vulnerability is addressed in the latest release of WordPress, version 4.5.2. Anyone who manages a WordPress site is strongly advised to update to the new version immediately, or – if auto-updates are enabled – at least log in and make sure that the update was actually installed.