From 9d4e4c3da080d856c7a51e2d8b525b76af258364 Mon Sep 17 00:00:00 2001 From: skodak Date: Thu, 11 Dec 2008 18:06:01 +0000 Subject: [PATCH] MDL-17611 removing XSS risk from mod/feedback:complete, because this capability is meant to be allowed in student roles --- mod/feedback/db/access.php | 2 +- mod/feedback/version.php | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/mod/feedback/db/access.php b/mod/feedback/db/access.php index ccf5d2806a..faa7e96e1f 100644 --- a/mod/feedback/db/access.php +++ b/mod/feedback/db/access.php @@ -49,7 +49,7 @@ $mod_feedback_capabilities = array( 'mod/feedback:complete' => array( - 'riskbitmask' => RISK_SPAM | RISK_XSS, + 'riskbitmask' => RISK_SPAM, 'captype' => 'write', 'contextlevel' => CONTEXT_MODULE, diff --git a/mod/feedback/version.php b/mod/feedback/version.php index 5159844661..506b5e61bd 100644 --- a/mod/feedback/version.php +++ b/mod/feedback/version.php @@ -10,7 +10,7 @@ */ - $module->version = 2008073003; // The current module version (Date: YYYYMMDDXX) + $module->version = 2008073004; // The current module version (Date: YYYYMMDDXX) $module->requires = 2008072401; // Requires this Moodle version $feedback_version_intern = 1; //this version is used for restore older backups $module->cron = 0; // Period for cron to check this module (secs) -- 2.39.5