|Topic:||quiz/questions capabilities lack some risk flags in access.php files|
|Versions affected:||< 1.7.6, < 1.8.7, < 1.9.3|
|Reported by:||internal code review|
|Solution:||upgrade to 1.7.6, 1.8.7, 1.9.3 or any recent nightly|
Description:We have discovered during code review that some quiz and questions related capabilities lack proper definition of associated risks. Administrators should update sites or at least review the changes in risk definitions in all quiz and question related capabilities.