Answered: Is q2a 1.8.6 more secure than version 1.7.5?
Post date: 2022-05-16 20:43:47
Views: 341

Generally speaking: yes. It's practically always advisable to keep software up to date, because new versions fix known (potentially exploitable) bugs in older versions.

For more information you can review the version history. From a quick glance notable security improvements appear to be:

  • Security fix: prevent use of <embed> and <object> tags. (v1.8.4)
  • Reworked file cache to securely allow cache inside web root. (v1.8.0 beta 2)
  • Password security has been upgraded from sha1 to use PHP's password_hash function where available. (v1.8.0 beta 2)

You should also keep PHP, your webserver and your database updated, since those are part of the system's attack surface as well.
Please click Here to read the full story.
 
Other Top and Latest Questions:
Fed holds interest rates steady: Here's what that means for credit cards, savings rates, mortgages and car loans
Thursday's big stock stories: What’s likely to move the market in the next trading session
Chairman Warsh drastically alters Fed rate statement. Here's what's changed
'Passive' investors who dodged bitcoin are now forced to own SpaceX, which is three times more volatile
Star City: Dark Forest
Trump and Iran's President Pezeshkian sign memorandum aimed to end war
From Mom and Dad to Just Mom
Jeffrey Gundlach says Fed's Warsh is not going to be the 'easy money' chairman many hoped for
Amazon AI exec predicts first 'commercially useful' quantum computers in 5-7 years
Google Gemini co-lead Noam Shazeer leaves for OpenAI