Re: Moodle XSS Vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: Moodle XSS Vulnerability
From: Martin Dougiamas <martin@xxxxxxxxxx>
Date: 17 Jul 2004 07:33:58 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

In-Reply-To: <20040713155408.18582.qmail@xxxxxxxxxxxxxxxxxxxxx>


>Martin Dougiamas the lead developer of Moodle fixed the bug in CVS Stable and 
>Development but there is not any new release yet.

There is a new release (Moodle 1.3.3) and a patch file to fix this little 
problem.

Prev by Date: Medal of Honor remote buffer-overflow
Next by Date: Web_Store.cgi allows Command Execution
Previous by thread: Moodle XSS Vulnerability
Next by thread: @stake advisory: WebSTAR (5.3.2 and below) Multiple Vulnerabilities
Index(es):
- Date
- Thread