« Notes de mise à jour de Moodle 2.6.11 » : différence entre les versions
De MoodleDocs
(Sortie le 11 mai 2015) |
|||
Ligne 7 : | Ligne 7 : | ||
=== Sécurité === | === Sécurité === | ||
* [https://moodle.org/mod/forum/discuss.php?d=313681 MSA-15-0018] Quiz manual-grading is an XSS risk, but does not declare that | |||
* [https://moodle.org/mod/forum/discuss.php?d=313682 MSA-15-0019] Possible phishing when redirecting to external site using referer header | |||
* [https://moodle.org/mod/forum/discuss.php?d=313683 MSA-15-0020] User fullname disclosure through account confirmation link | |||
* [https://moodle.org/mod/forum/discuss.php?d=313685 MSA-15-0022] Potential XSS risk when returning text entered by student from Web Services | |||
* [https://moodle.org/mod/forum/discuss.php?d=313686 MSA-15-0023] Suspended user is able to login when confirming email | |||
* [https://moodle.org/mod/forum/discuss.php?d=313687 MSA-15-0024] User with suspended enrolment can see sections in the navigation tree | |||
* [https://moodle.org/mod/forum/discuss.php?d=313688 MSA-15-0025] Capability to manage own files is not respected in Web Services | |||
<noinclude>== Voir aussi == | <noinclude>== Voir aussi == |
Version du 18 mai 2015 à 08:07
Cette version de Moodle n'est plus supportée ! Seuls les correctifs de sécurité ont été intégrés. Vous devriez mettre à jour vers une version entièrement supportée de Moodle.
Date de sortie : 11 mai 2015
Consulter la liste des détails sur les évolutions et corrections de bogues de cette version 2.6.11 (en anglais).
Sécurité
- MSA-15-0018 Quiz manual-grading is an XSS risk, but does not declare that
- MSA-15-0019 Possible phishing when redirecting to external site using referer header
- MSA-15-0020 User fullname disclosure through account confirmation link
- MSA-15-0022 Potential XSS risk when returning text entered by student from Web Services
- MSA-15-0023 Suspended user is able to login when confirming email
- MSA-15-0024 User with suspended enrolment can see sections in the navigation tree
- MSA-15-0025 Capability to manage own files is not respected in Web Services
Voir aussi
- Notes de mise à jour de Moodle 2.6.10
- Toutes les Notes de mise à jour de la branche Moodle 2.6
- Mise à jour à Moodle 2.6
- Version anglaise