WordPress 3.1.3 was made available to the public yesterday. This release is not only a security update for all previous versions but also offers some new features.
WordPress 3.1.3 contains the following security fixes and enhancements:
- Various security hardening.
- Taxonomy query hardening.
- Prevents sniffing out user names of non-authors by using canonical redirects.
- Media security fixes.
- Improved file upload security on hosts with dangerous security settings.
- Cleans up old WordPress import files if the import does not finish.
- Introduces “clickjacking” protection in modern browsers on admin and login pages.
For details, feel free to check out the change log. Download WordPress 3.1.3 or update automatically from the Dashboard → Updates menu in your site’s admin area.
Also, you may be curious enough and want to take a look at the original release announcement that not only talks about WordPress 3.1.3 but also talks about the availability of WordPress 3.2 Beta 2. We'll talk more about WordPress 3.2 later.