WordPress 4.6.1 Security and Maintenance Release
WordPress 4.6.1 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately.
WordPress versions 4.6 and earlier are affected by two security issues: a cross-site scripting vulnerability via image filename, reported by SumOfPwn researcher Cengiz Han Sahin; and a path traversal vulnerability in the upgrade package uploader, reported by Dominik Schilling from the WordPress security team.
In addition to the security issues above, WordPress 4.6.1 fixes 15 bugs from 4.6.
If you are a Pink Mac website management customer this update will be taken care of you.