WordPress 4.2 stored XSS exploit

WordPress 4.2 just released last week and today a cross site server exploit was announced. Version 4.2.1 was released immediately to patch it. The exploit was found by Jouko Pynnönen of Klikki Oy. Overview Current versions of WordPress are vulnerable to a stored XSS....