Moodle 3.2.7 release notes

From MoodleDocs

This version of Moodle is no longer supported for general bug fixes. You are encouraged to upgrade to a supported version of Moodle.

Releases > Moodle 3.2.7 release notes

Release date: 15 January 2018

Here is the full list of fixed issues in 3.2.7.

Security issues

  • MSA-18-0001 Server Side Request Forgery in the filepicker
  • MSA-18-0002 Setting for blocked hosts list can be bypassed with multiple A record hostnames
  • MSA-18-0003 Privilege escalation in quiz web services
  • MSA-18-0004 XSS in calendar event name

See also