WordPress 4.8.3 released with the security patches for all previous versions. The update includes the issue with $wpdb->prepare() which leads to an SQL injection (SQLi) The new release includes change in behaviour for the esc_sql() function. WordPress core is not directly vulnerable to this issue, but weve added hardening to prevent plugins and themes from accidentally causing a vulnerability. Users are recommended to update their sites immediately with the latest security update.”]
Source: https://gbhackers.com/wordpress-4-8-3-patch-sql-injection/

