Denial Of Service (DoS) Through Disk Consumption

Moodle is vulnerable to denial of service DoS attacks. A malicious user with the guest role can create multiple big drafts with the Atto module's editor-autosave feature to cause the system to run out of disk space...

CVE-2015-5332

Atto in Moodle 2.8.x before 2.8.9 and 2.9.x before 2.9.3 allows remote attackers to cause a denial of service disk consumption by leveraging the guest role and entering drafts with the editor-autosave feature...