Release date: 21st October 2009

Here is the full list of fixed issues in 1.9.6.

Highlights

• MDL-19145 - Integration with Safe Exam Browser (requires enabling in Site Administration > Miscellaneous > Experimental)
• MDL-19460 - Wiki module: unsupported feature, interwiki links, disabled by default
• MDL-19274 - Blog RSS feeds now include tag information for each post
• MDL-18658 - Multimedia plugins filter now supports mp4 and m4v
• MDL-19231 - Multimedia plugins filter includes option for processing YouTube links and auto-embedding the video in the text with correct XHTML
• MDL-11896 - Database activity module entries awaiting approval display and 'Entry is not approved yet' message
• MDL-12922 - New capability moodle/restore:rolldates to control who can roll courses forward
• MDL-15262 - New capabilities moodle/course:changecategory and moodle/course:changesummary to control who can edit the course category and summary in the Course settings
• MDL-19078 - Course search now includes search of course idnumber and shortname too
• MDL-20371 - Site files has a secure backupdata folder for saving course backups

Security issues

• MSA-09-0016 - Email not properly escaped on user edit page
• MSA-09-0017 - Upgrade code in 1.9 does not escape tags properly
• MSA-09-0018 - Incorrect escaping when updating first post in a single simple discussion forum type
• MSA-09-0019 - SQL injection in update_record
• MSA-09-0020 - Teachers can view students' grades in all courses in the overview report
• MSA-09-0021 - Error in ADODB OCI8/MSSQL drivers allows SQL injection vulnerability

New language strings

• MDL-20371 - publicsitefileswarning3 in moodle.php
• MDL-19145 - several strings and a new help file. Please check CVS history.

New language packs

• Marathi - Usha Deo
• Urdu - Faisal Kaleem

(See Translation credits for additional details.)

See also

• Moodle 1.9.5 release notes