Note:

If you want to create a new page for developers, you should create it on the Moodle Developer Resource site.

Moodle 1.9.2 release notes

From MoodleDocs
The printable version is no longer supported and may have rendering errors. Please update your browser bookmarks and please use the default browser print function instead.
Important:

This content of this page has been updated and migrated to the new Moodle Developer Resources. The information contained on the page should no longer be seen up-to-date.

Why not view this page on the new site and help us to migrate more content to the new site!

Release date: 11th July 2008

Here is the full list of fixed issues in 1.9.2.

Highlights

  • Compatibility fixes for MSSQL, Oracle and PostgreSQL
  • Improved triggering of core events (though contributed code needs to be updated - see MDL-9983)
  • Email change confirmation and other improvements relating to reducing the risk of spam
  • Forum subscription improvements
  • Setting for deleting not-fully-set-up accounts
  • Quiz report enhancements and bug fixes (see Quiz report enhancements for full list, though most are planned for Moodle 2.0)

Security issues

  • MSA-08-0010: sql injection in HotPot module
  • MSA-08-0012: Potential non-persistent XSS when searching for group members (MSSQL and Oracle only)
  • MSA-08-0014: potential sql injection in events handling code
  • MSA-08-0015: accessible profiles of deleted users
  • MSA-08-0016: Email could be changed in profile without confirmation

See also

Retrieved from "https://docs.moodle.org/dev/index.php?title=Moodle_1.9.2_release_notes&oldid=62820"
Powered by MediaWiki