Can exploiters make changes on ModuleScripts which affect server

I have a settings module script and I am trying to prevent exploiters from hacking it, lets say they did something like

local M = require(Module)

M.Ammo = math.huge

Would those changes affect any server script reading the module? Or would it only affect local scripts

The change to the moduleScript would only be local, so it would only affect localScripts belonging to the hacker’s client.

Exploiters can only access local scripts and module scripts that are required from local scrips.