Answered: Is q2a 1.8.6 more secure than version 1.7.5?
Post date: 2022-05-16 20:43:47
Views: 248

Generally speaking: yes. It's practically always advisable to keep software up to date, because new versions fix known (potentially exploitable) bugs in older versions.

For more information you can review the version history. From a quick glance notable security improvements appear to be:

  • Security fix: prevent use of <embed> and <object> tags. (v1.8.4)
  • Reworked file cache to securely allow cache inside web root. (v1.8.0 beta 2)
  • Password security has been upgraded from sha1 to use PHP's password_hash function where available. (v1.8.0 beta 2)

You should also keep PHP, your webserver and your database updated, since those are part of the system's attack surface as well.
Please click Here to read the full story.
 
Other Top and Latest Questions:
DOJ charges Southern Poverty Law Center with fraud over secret funding of extremist groups
Jim Cramer says these stocks show why you need to trade on fundamentals, not fear
Trump recounts Tim Cook call to 'kiss my ass,' in stark look at White House dealmaking
Rep. Sheila Cherfilus-McCormick resigns, third House member to quit this month
Alaska Air pulls forecast as Iran-linked fuel surge hits margins
Did this crow poop on me deliberately?
Pet death logistics
SpaceX says it can buy Cursor later this year for $60 billion or pay $10 billion for 'our work together'
CEO with over $3 trillion under management tells Gen-Z to think past ‘hobby investing’
Analysis: Warsh emerges from a difficult hearing with his Fed 'regime-change' plan intact