If you own or manage an open source content management system (CMS) based website it is imperative that you keep its components and base code current. Examples of open source CMS foundations are WordPress, Joomla and Drupal. All are excellent CMS foundations however they must be maintained. Not only must the core of your website be kept current, so too must the extensions, plugins or functional elements that have been installed.
Websites are living, breathing entities for businesses, organizations and sole operators. Maintaining them is essential for security sake. Owners of all software code bases update their code for various reasons. Many times new functionality is added and sometimes security issues are addressed. As a website owner you want to avoid security problems. The impact of a security breach is another topic unto itself but the importance of keeping your site code current cannot be over emphasized.
I am an avid follower of Sucuri and their blog recently carried an article on this topic with a focus on WordPress. Their article goes into detail on how to approach updating your website software. It is excellent reading and I urge you to spend some time perusing it. Here is the link: https://blog.sucuri.net/2019/09/wordpress-plugin-audit.html. Even though the Sucuri article focuses on WordPress, the concepts apply to all websites.
If you have any questions or concerns on this topic, or wish to have help auditing your website, please get in touch with me. I am available for a no obligation consultation.