This release corrects a potential sql injection vulnerability in the search function of Simple:Press. The bug was reported by a Simple Press user that wishes to remain anonymous. We want to thank him for the responsible reporting of this issue so it could be researched and resolved.
So please be sure to update your installations of Simple:Press…
The next planned version of Simple:Press, v5.5.1, is still on target for release in a couple weeks when the WordPress team ships their 4.0 version.