Answered: Is q2a 1.8.6 more secure than version 1.7.5?
Post date: 2022-05-16 20:43:47
Views: 188

Generally speaking: yes. It's practically always advisable to keep software up to date, because new versions fix known (potentially exploitable) bugs in older versions.

For more information you can review the version history. From a quick glance notable security improvements appear to be:

  • Security fix: prevent use of <embed> and <object> tags. (v1.8.4)
  • Reworked file cache to securely allow cache inside web root. (v1.8.0 beta 2)
  • Password security has been upgraded from sha1 to use PHP's password_hash function where available. (v1.8.0 beta 2)

You should also keep PHP, your webserver and your database updated, since those are part of the system's attack surface as well.
Please click Here to read the full story.
 
Other Top and Latest Questions:
World's largest sovereign wealth fund's bets on Big Tech and banking drive gains
UK PM Keir Starmer suffers major blow after his party comes third in key vote
Columbia U. student Elmina Aghayeva released from ICE custody after Trump, NY mayor meeting
Red, white, and for you, sweetie
Star Trek: Starfleet Academy: The Life Of The Stars
Stargate SG-1: Absolute Power
Core wholesale prices rose 0.8% in January, much more than expected
Anthropic faces lose-lose scenario in Pentagon conflict as deadline for policy change looms
Apple appears to be sitting out the AI arms race. Will the strategy work?
Trump Media in talks to spin off Truth Social from DJT into independent stock