Answered: Is q2a 1.8.6 more secure than version 1.7.5?
Post date: 2022-05-16 20:43:47
Views: 320

Generally speaking: yes. It's practically always advisable to keep software up to date, because new versions fix known (potentially exploitable) bugs in older versions.

For more information you can review the version history. From a quick glance notable security improvements appear to be:

  • Security fix: prevent use of <embed> and <object> tags. (v1.8.4)
  • Reworked file cache to securely allow cache inside web root. (v1.8.0 beta 2)
  • Password security has been upgraded from sha1 to use PHP's password_hash function where available. (v1.8.0 beta 2)

You should also keep PHP, your webserver and your database updated, since those are part of the system's attack surface as well.
Please click Here to read the full story.
 
Other Top and Latest Questions:
Bitcoin's high-conviction holders are turning into sellers as the crypto's price hits new lows
Higher mortgage rates don't just keep buyers on the sidelines. Application denials rise too
Don't Want No Scrub (Jay)s
Top Chef: Plate Expectations
Game Changer: Rulette 2
Blackstone restricts flagship fund withdrawals as private asset fears reemerge
Inside Wealth: Soaring stocks created 2 million new millionaires around the world last year
Kalshi is building a prediction markets 'Bloomberg Terminal' for high-end traders, source says
Oil prices fall 3% on report Trump reluctant to restart Iran war
Eli Manning weighs in on Giants QB Jaxson Dart's Trump rally fallout