Moodle 3.2.7 release notes

From MoodleDocs
Important:

This content of this page has been updated and migrated to the new Moodle Developer Resources. The information contained on the page should no longer be seen up-to-date.

Why not view this page on the new site and help us to migrate more content to the new site!

This version of Moodle is no longer supported for general bug fixes. You are encouraged to upgrade to a supported version of Moodle.

Releases > Moodle 3.2.7 release notes

Release date: 15 January 2018

Here is the full list of fixed issues in 3.2.7.

Security issues

  • MSA-18-0001 Server Side Request Forgery in the filepicker
  • MSA-18-0002 Setting for blocked hosts list can be bypassed with multiple A record hostnames
  • MSA-18-0003 Privilege escalation in quiz web services
  • MSA-18-0004 XSS in calendar event name

See also