Answered: Is q2a 1.8.6 more secure than version 1.7.5?
Post date: 2022-05-16 20:43:47
Views: 223

Generally speaking: yes. It's practically always advisable to keep software up to date, because new versions fix known (potentially exploitable) bugs in older versions.

For more information you can review the version history. From a quick glance notable security improvements appear to be:

  • Security fix: prevent use of <embed> and <object> tags. (v1.8.4)
  • Reworked file cache to securely allow cache inside web root. (v1.8.0 beta 2)
  • Password security has been upgraded from sha1 to use PHP's password_hash function where available. (v1.8.0 beta 2)

You should also keep PHP, your webserver and your database updated, since those are part of the system's attack surface as well.
Please click Here to read the full story.
 
Other Top and Latest Questions:
Older Americans face big tax changes. Here's where they can find free filing help
'Silent killers': How AI start-ups are trying to solve one of the retail industry's biggest problems
Sánchez to Trump: Spain won’t ‘applaud those who set the world on fire just because they then show up with a bucket’
CNBC Points Pro: How soon should I use my credit card points after earning them?
Two-gender musical duos?
First ships pass Strait of Hormuz since Trump-Iran ceasefire, but traffic remains low amid confusion
Oil prices plunge after Iran agrees to safe passage through Strait of Hormuz during ceasefire
Epstein files: Ex-AG Pam Bondi’s April 14 testimony before House Oversight to be rescheduled
Delta CEO says airline will 'meaningfully' cut growth plans, sees $300 million boost from its refinery
AI's next bottleneck: Why even the best chips made in the U.S. take a round trip to Taiwan