Moodle 2.2.x < 2.2.11 Multiple Vulnerabilities

Binary data 9415.prm...

Moodle 2.4.x < 2.4.5 / 2.5.x < 2.5.1 Multiple Vulnerabilities

Binary data 9417.prm...

Moodle 2.3.x < 2.3.8 Multiple Vulnerabilities

Binary data 9416.prm...

CVE-2013-4938

The CVE-2013-4938 issue affects Moodle’s IMS-LTI mod_form prior to certain releases. The vulnerability arises because the sendname, sendemailaddr, and acceptgrades privacy settings are not properly enforced, allowing remote attackers to obtain sensitive information in opportunistic environments w...

Updated moodle package fixes multiple security vulnerabilities

Flash files distributed with the YUI library in Moodle before 2.4.5 may have allowed for cross-site scripting attacks MSA-13-0025. Privacy settings for the IMS-LTI External tool module in Moodle before 2.4.5 were not able to be changed so personal information was always transferred MSA-13-0026...