danmarsden
commented
6 months ago please review all your code to ensure you fix - not just the example I gave above.
Open danmarsden opened 6 months ago
danmarsden
commented
6 months ago please review all your code to ensure you fix - not just the example I gave above.
https://github.com/BM373/moodle-mod_videoassessment/blob/40bd5a043e0cfffc2826583ffdc51947736bbbb3/assignclass/index.php#L17-L20
Please use moodle's optional/required_param apis this is a blocker for plugins db approval.
more info on this here: https://moodledev.io/general/development/policies/security#dont-trust-any-input-from-users