Note:

If you want to create a new page for developers, you should create it on the Moodle Developer Resource site.

Moodle 2.7.20 release notes: Difference between revisions

From MoodleDocs
No edit summary
Line 9: Line 9:
===Security issues===
===Security issues===
   
   
A number of security related issues were resolved. Details of these issues will be released after a period of approximately one week to allow system administrators to safely update to the latest version.
* [https://moodle.org/mod/forum/discuss.php?d=352353 MSA-17-0010] External blog editing takeover
* [https://moodle.org/mod/forum/discuss.php?d=352354 MSA-17-0011] Searching of blogs possible without capability to do it
* [https://moodle.org/mod/forum/discuss.php?d=352355 MSA-17-0012] CSRF in number of courses displayed in the course overview block


==See also==
==See also==

Revision as of 06:56, 15 May 2017

This version of Moodle is no longer supported. You are encouraged to upgrade to a supported version of Moodle.

Releases > Moodle 2.7.20 release notes

Release date: 8 May 2017

Here is the full list of fixed issues in 2.7.20.

Security issues

  • MSA-17-0010 External blog editing takeover
  • MSA-17-0011 Searching of blogs possible without capability to do it
  • MSA-17-0012 CSRF in number of courses displayed in the course overview block

See also

Retrieved from "https://docs.moodle.org/dev/index.php?title=Moodle_2.7.20_release_notes&oldid=52413"
Powered by MediaWiki