I am trying to help someone who is currently running Magento 220.127.116.11. The store owner's knowledge of Magento is very limited, and our main concern is the security of the current installation.
We have Magento running behind an Incapsula firewall. Will Incapsula protect against vulnerabilities such as the Zend Framework exploit. Will the firewall protect against the Magento installation not having the latest patches installed?
Is it advisable in order to secure the Magento installation to upgrade to version 2, or will patching the current version 18.104.22.168 be enough?