On March 13, 2019, WordPress 5.1.1 was released to the public.
To download WordPress 5.1.1, update automatically from the Dashboard > Updates menu in your site’s admin area or visit the archive.
For step-by-step instructions on installing and updating WordPress:
If you are new to WordPress, we recommend that you begin with the following:
- New To WordPress – Where to Start
- First Steps With WordPress or Upgrading WordPress Extended
- WordPress Lessons
From the WordPress 5.1.1 release post, this release contains bug fixes, enhancements, and security fixes. These changes include:
- A pair of security fixes that handle how comments are filtered and then stored in the database.
- Hosts can now offer a button for their users to update PHP.
- The recommended PHP version used by the “Update PHP” notice can now be filtered.
- Several minor bug fixes.
For a full list of changes, please consult the list of tickets on Trac.
Props to Simon Scannell of RIPS Technologies who discovered the security flaw independent of some work that was being done by members of the core security team.
Thank you to everyone who contributed to WordPress 5.1.1:
Aaron Jorbin, Alex Concha, Andrea Fercia, Andy Fragen, Anton Vanyukov, Ben Bidner, bulletdigital, David Binovec, Dion Hulse, Felix Arntz, Garrett Hyder, Gary Pendergast, Ian Dunn, Jake Spurlock, Jb Audras, Jeremy Felt, Johan Falk, Jonathan Desrosiers, Luke Carbis, Mike Schroder, Milan Dinić, Mukesh Panchal, Paul Biron, Peter Wilson, Sergey Biryukov, and Weston Ruter.
List of Files Revised