5 matches found
Moodle 2.8.x < 2.8.6 Multiple Vulnerabilities
Binary data 9425.prm...
Fedora 22 : moodle-2.8.7-1.fc22 (2015-14988)
moodle-2.8.7-1.fc22 - Latest upstream release. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
Fedora 21 : moodle-2.7.9-1.fc21 (2015-14996)
moodle-2.7.9-1.fc21 - 2.7.9. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
CVE-2015-3181
CVE-2015-3181 affects Moodle up to versions including 2.5.9; 2.6.x before 2.6.11; 2.7.x before 2.7.8; and 2.8.x before 2.8.6. The issue arises in files/externallib.php where the moodle/user:manageownfiles capability is not considered when approving a private-file upload, allowing remote authentic...
Updated moodle packages fix security vulnerabilities
Updated moodle package fixes security vulnerabilities: In Moodle before 2.6.11, leaving gradebook feedback is a trusted action and such capabilities in other modules already have an XSS mask, 'mod/quiz:grade' was missing this flag CVE-2015-3174. In Moodle before 2.6.11, some error messages displa...