WordPress 5.3.1 is now available!<\/p>\n\n\n\n
This security and maintenance release features 46 fixes and enhancements. Plus, it adds a number of security fixes\u2014see the list below.<\/p>\n\n\n\n
WordPress 5.3.1 is a short-cycle maintenance release. The next major release will be\u00a0version 5.4.<\/p>\n\n\n\n
You can download WordPress 5.3.1 by clicking the button at the top of this page, or visit your Dashboard \u2192 Updates<\/strong> and click Update Now<\/strong>.<\/p>\n\n\n\n If you have sites that support automatic background updates, they\u2019ve already started the update process.<\/p>\n\n\n\n Four security issues affect WordPress versions 5.3 and earlier; version 5.3.1 fixes them, so you\u2019ll want to upgrade. If you haven\u2019t yet updated to 5.3, there are also updated versions of 5.2 and earlier that fix the security issues.<\/p>\n\n\n\n Here are a few of the highlights:<\/p>\n\n\n\n For more information, browse the full list of changes on Trac<\/a> or check out the version 5.3.1 HelpHub documentation page<\/a>.<\/p>\n\n\n\n In addition to the security researchers mentioned above, thank you to everyone who contributed to WordPress 5.3.1:<\/p>\n\n\n\n 123host<\/a>, acosmin<\/a>, Adam Silverstein<\/a>, Albert Juh\u00e9 Lluveras<\/a>, Alex Concha<\/a>, Alex Mills<\/a>, Anantajit JG<\/a>, Anders Nor\u00e9n<\/a>, andraganescu<\/a>, Andrea Fercia<\/a>, Andrew Duthie<\/a>, Andrew Ozz<\/a>, Andrey “Rarst” Savchenko<\/a>, aravindajith<\/a>, archon810<\/a>, Ate Up With Motor<\/a>, Ayesh Karunaratne<\/a>, Birgir Erlendsson (birgire)<\/a>, Boga86<\/a>, Boone Gorges<\/a>, Carolina Nymark<\/a>, Chetan Prajapati<\/a>, Csaba (LittleBigThings)<\/a>, Dademaru<\/a>, Daniel Bachhuber<\/a>, Daniele Scasciafratte<\/a>, Daniel Richards<\/a>, David Baumwald<\/a>, David Herrera<\/a>, Dion hulse<\/a>, ehtis<\/a>, Ella van Durpe<\/a>, epiqueras<\/a>, Fabian<\/a>, Felix Arntz<\/a>, flaviozavan<\/a>, Garrett Hyder<\/a>, Glenn<\/a>, Grzegorz (Greg) Zi\u00f3\u0142kowski<\/a>, Grzegorz.Janoszka<\/a>, Hareesh Pillai<\/a>, Ian Belanger<\/a>, ispreview<\/a>, Jake Spurlock<\/a>, James Huff<\/a>, James Koster<\/a>, Jarret<\/a>, Jasper van der Meer<\/a>, Jb Audras<\/a>, jeichorn<\/a>, Jer Clarke<\/a>, Jeremy Felt<\/a>, Jip Moors<\/a>, Joe Hoyle<\/a>, John James Jacoby<\/a>, Jonathan Desrosiers<\/a>, Jonny Harris<\/a>, Joost de Valk<\/a>, Jorge Costa<\/a>, Joy<\/a>, Juliette Reinders Folmer<\/a>, justdaiv<\/a>, Kelly Dwan<\/a>, Kharis Sulistiyono<\/a>, Kite<\/a>, kyliesabra<\/a>, lisota<\/a>, lukaswaudentio<\/a>, Maciej Mackowiak<\/a>, marcelo2605<\/a>, Marius L. J.<\/a>, Mat Lipe<\/a>, mayanksonawat<\/a>, Mel Choyce-Dwan<\/a>, Michael Arestad<\/a>, miette49<\/a>, Miguel Fonseca<\/a>, mihdan<\/a>, Mike Auteri<\/a>, Mikko Saari<\/a>, Milan Petrovic<\/a>, Mukesh Panchal<\/a>, NextScripts<\/a>, Nick Daugherty<\/a>, Niels Lange<\/a>, noyle<\/a>, Ov3rfly<\/a>, Paragon Initiative Enterprises<\/a>, Paul Biron<\/a>, Peter Wilson<\/a>, Rachel Peter<\/a>, Riad Benguella<\/a>, Ricard Torres<\/a>, Roland Murg<\/a>, Ryan McCue<\/a>, Ryan Welcher<\/a>, SamuelFernandez<\/a>, sathyapulse<\/a>, Scott Taylor<\/a>, scvleon<\/a>, Sergey Biryukov<\/a>, sergiomdgomes<\/a>, SGr33n<\/a>, simonjanin<\/a>, smerriman<\/a>, steevithak<\/a>, Stephen Bernhardt<\/a>, Stephen Edgar<\/a>, Steve Dufresne<\/a>, Subrata Mal<\/a>, Sultan Nasir Uddin<\/a>, Sybre Waaijer<\/a>, Tammie Lister<\/a>, Tanvirul Haque<\/a>, Tellyworth<\/a>, timon33<\/a>, Timothy Jacobs<\/a>, Timoth\u00e9e Brosille<\/a>, tmatsuur<\/a>, Tung Du<\/a>, Veminom<\/a>, vortfu<\/a>, waleedt93<\/a>, williampatton<\/a>, wpgurudev<\/a>, and Zack Tollman<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":" WordPress 5.3.1 is now available! This security and maintenance release features 46 fixes and enhancements. Plus, it adds a number of security fixes\u2014see the list below. WordPress 5.3.1 is a short-cycle maintenance release. The next major release will be\u00a0version 5.4. You can download WordPress 5.3.1 by clicking the button at the top of this page, […]<\/p>\n","protected":false},"author":8670591,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"episode_type":"","audio_file":"","cover_image":"","cover_image_id":"","duration":"","filesize":"","date_recorded":"","explicit":"","block":"","filesize_raw":"","jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[14,15],"tags":[437],"class_list":["post-8203","post","type-post","status-publish","format-standard","hentry","category-releases","category-security","tag-minor-releases"],"jetpack_featured_media_url":"","jetpack_shortlink":"https:\/\/wp.me\/pZhYe-28j","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/wordpress.org\/news\/wp-json\/wp\/v2\/posts\/8203","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/wordpress.org\/news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/wordpress.org\/news\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/wordpress.org\/news\/wp-json\/wp\/v2\/users\/8670591"}],"replies":[{"embeddable":true,"href":"https:\/\/wordpress.org\/news\/wp-json\/wp\/v2\/comments?post=8203"}],"version-history":[{"count":22,"href":"https:\/\/wordpress.org\/news\/wp-json\/wp\/v2\/posts\/8203\/revisions"}],"predecessor-version":[{"id":8244,"href":"https:\/\/wordpress.org\/news\/wp-json\/wp\/v2\/posts\/8203\/revisions\/8244"}],"wp:attachment":[{"href":"https:\/\/wordpress.org\/news\/wp-json\/wp\/v2\/media?parent=8203"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/wordpress.org\/news\/wp-json\/wp\/v2\/categories?post=8203"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/wordpress.org\/news\/wp-json\/wp\/v2\/tags?post=8203"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}Security updates<\/h2>\n\n\n\n
wp_kses_bad_protocol()<\/code> to ensure that it is aware of the named colon attribute.<\/li>Maintenance updates<\/h2>\n\n\n\n
get_permalink()<\/code> more resilient against PHP timezone changes.<\/li>sodium_compat<\/code>.<\/li>Thanks!<\/h2>\n\n\n\n