Moodle 3.7.8
Unsupported Moodle Version
This version of Moodle is no longer supported and will not receive fixes for security risks.
You are encouraged to upgrade to a supported version of Moodle.
You are encouraged to upgrade to a supported version of Moodle.
Release date: 14 September 2020
Here is the full list of fixed issues in 3.7.8.
For developers
- MDL-69068 - Allow behat generators to be pivoted
Security fixes
- MSA-20-0012 Reflected XSS in tag manager
- MSA-20-0013 "Log in as" capability in a course context may lead to some privilege escalation
- MSA-20-0014 Denial of service risk in file picker unzip functionality
- MSA-20-0015 Chapter name in book not always escaped with forceclean enabled