As of March 12th 2019, WordPress 5.1.1 is available.
This is a security and maintenance release meaning that it patches some security issues. Details of the vulnerabilities are limited in their release notes, but if you’re running a WordPress site you should check that your site is updated to the latest release to make sure it’s not vulnerable to attack from those attempting to exploit the security bugs.
According to WordPress, 5.1.1 “includes a pair of security fixes that handle how comments are filtered and then stored in the database. With a maliciously crafted comment, a WordPress post was vulnerable to cross-site scripting.”
If you are yet to upgrade to version 5 of WordPress (“Bebo“) and are still running on version 4.9, then 4.9.10 also fixes the security bugs.
Wondering why we report on WordPress security releases? Simply because WordPress is the most popular website platform and powers over 25% of websites. And with popularity comes security challenges as it’s a popular target for hackers looking to exploit known vulnerabilities – which is also why we have an article in our Hub about WordPress security.