Hello.
I recently read about the vulnerabilities for the "Shibboleth" plugin and how its important to update to the latest Moodle version in order to avoid them.
By default that plugin is disabled in my Moodle and i do not use it (i am assuming because is disabled) so i was wondering if the fact that it is disabled means that it does not affect me, is that correct?. I am asking because an update would require a lot of preparation because my Moodle is kinda big now.
Is it necessary for me to update because of the "Shibboleth" vulnerabilities even though it is disabled?
Thank you very much!
My Moodle version: 3.11.2+
Hosted in cPanel on BlueHost.