WordPress 3.1.1 Released

WordPress, the most used blogging platform, got an version upgrade yet again. Last night, the version 3.1.1 is made available for download. This 3.1 branch version is mainly a maintenance release and contains some security fixes and bug fixes from version 3.1. You can download it here.

The main fixes are:

• Security hardening on media files uploader.
• Fixes for PHP crash occurred from some complex hyperlinks
• A minor XSS flaw on upgrade screens fixed
• Fixes for taxonomy and PATHINFO (/index.php/) permalinks
• Fixes for various query and taxonomy edge cases that caused some plugin compatibility issues
• Some bug fixes in wordpress admin bar
• Fixes in use ‘Visit Site’ in header if blog has no name
• Few bud fixes in IIS6 compatibility

and a few more

Version 3.1.1 also addresses three security issues discovered by WordPress core developers Jon Cave and Peter Westwood, of our security team. The first hardens CSRF prevention in the media uploader. The second avoids a PHP crash in certain environments when handling devilishly devised links in comments, and the third addresses an XSS flaw.

Wordpress 3.1.1

Upgrading is easy if your host supports wget. You just need to go Updates on WordPress Dashboard and click on “Update Automatically”. You can always upgrade manually if you want. Just download the wordpress 3.1.1 package on your local computer, edit the wp-config.php file to add your database details, upload the files on your server overwriting the existing files. The run the upgrade process by going to “wp-admin/upgrade.php”.

If you are on Hostgator, the automatic update works flawlessly.