Moodle Information Disclosure Vulnerability

Moodle is an open source web-based teaching and learning application. A security vulnerability exists in Moodle, which allows attackers to exploit this vulnerability to access messaging-related functions to obtain sensitive information via a WEB service...

MGASA-2015-0032 Updated moodle package fixes security vulnerabilities

Updated moodle package fixes security vulnerabilities: In Moodle before 2.6.7, absence of a capability check in AJAX backend script in the LTI module could allow any enrolled user to search the list of registered tools CVE-2015-0211. In Moodle before 2.6.7, the course summary on course request...