please keep the access rights to your patch.php file as strict
as possible (600) as long as you don't need it. patch.php does
bad  things  without  the  need  for  authentication  if  your
web-server can access it!

Please consult the packages documentation for installing a new
database or upgrading yours to the current version.