WordPress version 3.1.3 has just been released.
It is a security update for all previous WordPress versions.
It contains the following security fixes and enhancementes:
- various security hardening
- taxonomy query hardening
- prevent sniffing out user names of non-authors by using canonical redirects
- media security fixes
- improves file upload security on hosts with dangerous security settings
- cleans up old WordPress import files if the import does not finish
- introduces “clickjacking” protection in modern browsers on admin and login pages.
You can automatically update to WordPress 3.1.3 via the Dashboard → Updates menu in your blog/site’s admin area.
