Answered: Is q2a 1.8.6 more secure than version 1.7.5?
Post date: 2022-05-16 20:43:47
Views: 186

Generally speaking: yes. It's practically always advisable to keep software up to date, because new versions fix known (potentially exploitable) bugs in older versions.

For more information you can review the version history. From a quick glance notable security improvements appear to be:

  • Security fix: prevent use of <embed> and <object> tags. (v1.8.4)
  • Reworked file cache to securely allow cache inside web root. (v1.8.0 beta 2)
  • Password security has been upgraded from sha1 to use PHP's password_hash function where available. (v1.8.0 beta 2)

You should also keep PHP, your webserver and your database updated, since those are part of the system's attack surface as well.
Please click Here to read the full story.
 
Other Top and Latest Questions:
Movie: GOAT
The IMAP is not the territory?
What’s behind a big jump in January property tech funding
Is there a list of US TV Channels and Sub-channels?
Trump to decide whether to attack Iran in next 10 days — oil prices rise
Labor Secretary's husband barred from HQ after claims he sexually assaulted women there: MS Now
Life after the 'great resignation': Incentives are dimming for workers to change jobs
Epstein files: Former prince Andrew released by police, Trump calls his arrest 'a shame'
These stocks can insulate investors from AI risk — and they pay dividends, says Jenny Harrington
South Korea's Kospi hits fresh high for a second straight session amid regional declines