WordPress 4.7.3 is now available for update. This security update covers six security issues that exists with WordPress version 4.2.2. Unintended files can be deleted by administrators using plugin deletion functionality. There is a CSRF vulnerability in WordPress that still has not been fixed, the flaw was found in July 2016 and the details for the exploitation were not disclosed. It is always a good idea to backup your WordPress before proceeding with update, if there is any issues,you can restore your website.”]
Source: https://gbhackers.com/wordpress-4-7-3-released-with-patch-for-six-security-issues-but-not-for-csrf/