Answered: Is q2a 1.8.6 more secure than version 1.7.5?
Post date: 2022-05-16 20:43:47
Views: 218

Generally speaking: yes. It's practically always advisable to keep software up to date, because new versions fix known (potentially exploitable) bugs in older versions.

For more information you can review the version history. From a quick glance notable security improvements appear to be:

  • Security fix: prevent use of <embed> and <object> tags. (v1.8.4)
  • Reworked file cache to securely allow cache inside web root. (v1.8.0 beta 2)
  • Password security has been upgraded from sha1 to use PHP's password_hash function where available. (v1.8.0 beta 2)

You should also keep PHP, your webserver and your database updated, since those are part of the system's attack surface as well.
Please click Here to read the full story.
 
Other Top and Latest Questions:
Apple at 50: The iPhone maker 'blew a 5-year lead' on AI, but former insiders say it can still win
Basic business class is here with new, stripped-down United Polaris fares
Polymarket removes wagers on U.S. service member rescue mission in Iran
OpenAI's Fidji Simo takes medical leave, announces leadership changes
European ministers call for a tax on energy company windfall profits as Iran war drives price surge
For All Mankind: The Hard Six
Movie: The Distinguished Citizen
Special Event: Rifftrax Short: Promotionals
Daredevil: Born Again: The Scales & The Sword
'Silent killers': How AI start-ups are trying to solve one of the retail industry's biggest problems