Answered: Is q2a 1.8.6 more secure than version 1.7.5?
Post date: 2022-05-16 20:43:47
Views: 335

Generally speaking: yes. It's practically always advisable to keep software up to date, because new versions fix known (potentially exploitable) bugs in older versions.

For more information you can review the version history. From a quick glance notable security improvements appear to be:

  • Security fix: prevent use of <embed> and <object> tags. (v1.8.4)
  • Reworked file cache to securely allow cache inside web root. (v1.8.0 beta 2)
  • Password security has been upgraded from sha1 to use PHP's password_hash function where available. (v1.8.0 beta 2)

You should also keep PHP, your webserver and your database updated, since those are part of the system's attack surface as well.
Please click Here to read the full story.
 
Other Top and Latest Questions:
The private space race is spurring a luxury hotel land grab for Florida oceanfront property
Financials have the market's deepest bench of near-breakouts
Chairman Warsh drastically alters Fed rate statement. Here's what's changed
CME CEO Terrence Duffy says the exchange operator will sue CFTC over perpetual futures
From Mom and Dad to Just Mom
Reverse dupe jewelry question
People with high sleep needs?
Oil falls as International Energy Agency forecasts supply glut next year after U.S.-Iran deal
CEOs of Anthropic and Google DeepMind call for U.S.-led AI coalition in meeting at G7
Defense contractors would be barred from buying back their stock in bill approved by Senate panel