Version 4.8.3 was just released moments ago. It address a SQL Injection issue discovered by Anthony Ferrara
IMPORTANT: I will be disclosing a massive WP SQLi vulnerability soon. I have no confidence WP will fix correctly and hence no choice but FD
— Anthony Ferrara (@ircmaxell) October 26, 2017
Confirmation from Anthony
Yes. I will be publishing a post in a little bit about it. Please update.
— Anthony Ferrara (@ircmaxell) October 31, 2017
WordPress post concerning the update: https://make.wordpress.org/core/2017/10/31/changed-behaviour-of-esc_sql-in-wordpress-4-8-3/ and https://wordpress.org/news/2017/10/wordpress-4-8-3-security-release/
If you have auto-update enabled you should receive the update automatically this morning. If you do not have auto-update enabled, please update ASAP.