Answered: Is q2a 1.8.6 more secure than version 1.7.5?
Post date: 2022-05-16 20:43:47
Views: 271

Generally speaking: yes. It's practically always advisable to keep software up to date, because new versions fix known (potentially exploitable) bugs in older versions.

For more information you can review the version history. From a quick glance notable security improvements appear to be:

  • Security fix: prevent use of <embed> and <object> tags. (v1.8.4)
  • Reworked file cache to securely allow cache inside web root. (v1.8.0 beta 2)
  • Password security has been upgraded from sha1 to use PHP's password_hash function where available. (v1.8.0 beta 2)

You should also keep PHP, your webserver and your database updated, since those are part of the system's attack surface as well.
Please click Here to read the full story.
 
Other Top and Latest Questions:
Apple's elevation of silicon head Johny Srouji signals sprint to build in-house chips for all devices
Gates Foundation reviewing Jeffrey Epstein ties, will slash 20% of staff, WSJ reports
Bike horn for warning oblivious pedestrians
Movie: Roommates
Movie: The Blue Caftan
Movie: The Mosquito Coast
Hormuz is just a ‘dry run’ if China and U.S. go to war in the Pacific, Singapore foreign minister warns
UK inflation jumps to 3.3% in March as fuel prices surge amid Iran war
These stocks may rip if the Iran conflict is resolved, UBS says
Judge dismisses Kash Patel's defamation lawsuit over claim he frequented 'nightclubs'