[prev in list] [next in list] [prev in thread] [next in thread]
List: oss-security
Subject: Re: [oss-security] CVE request: moodle 1.9.9/1.8.13 multiple
From: Josh Bressers <bressers () redhat ! com>
Date: 2010-06-21 18:45:33
Message-ID: 186858066.786041277145933950.JavaMail.root () zmail01 ! collab ! prod ! int ! phx2 ! redhat ! com
[Download RAW message or body]
----- "Vincent Danen" <vdanen@redhat.com> wrote:
> Moodle 1.9.9 and 1.8.13 fix a few security issues:
>
> http://docs.moodle.org/en/Moodle_1.9.9_release_notes
> http://docs.moodle.org/en/Moodle_1.8.13_release_notes
>
> Which address the following issues:
>
> * MSA-10-0010 Persistent Cross Site Scripting vulnerability in the
> MNET access control interface
CVE-2010-2228
> * MSA-10-0011 Cross Site Scripting vulnerability in blog/index.php
CVE-2010-2229
> * MSA-10-0012 KSES Security Filter Bypassing vulnerability
CVE-2010-2230
> * MSA-10-0013 Potential Cross Site Scripting vulnerability in Quiz
> reports
CVE-2010-2231
Thanks.
--
JB
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic