as we upgraded to 3.1.4 from 2.7 last week, I would like to know if we just can deactivate the feature competency in our moodle site, to avoid the security problems mentioned in the security annoncement :
MSA-17-0009:XSS in attachments to evidence of prior learning
MSA-17-0008:XSS in evidence of prior learning
Global search and webservices are deactivated for the other problems mentioned in the annoncements.
Thanks for answering in advance.