Moodle 1.9.2 release notes: Difference between revisions
From MoodleDocs
(French link) |
Dev Docs Bot (talk | contribs) m (Update migration status and path) |
||
Line 1: | Line 1: | ||
{{Template:Migrated|newDocId=/general/releases/1.9/1.9.2}} | |||
Release date: 11th July 2008 | Release date: 11th July 2008 | ||
Revision as of 09:04, 25 May 2022
Important:
This content of this page has been updated and migrated to the new Moodle Developer Resources. The information contained on the page should no longer be seen up-to-date. Why not view this page on the new site and help us to migrate more content to the new site! |
Release date: 11th July 2008
Here is the full list of fixed issues in 1.9.2.
Highlights
- Compatibility fixes for MSSQL, Oracle and PostgreSQL
- Improved triggering of core events (though contributed code needs to be updated - see MDL-9983)
- Email change confirmation and other improvements relating to reducing the risk of spam
- Forum subscription improvements
- Setting for deleting not-fully-set-up accounts
- Quiz report enhancements and bug fixes (see Quiz report enhancements for full list, though most are planned for Moodle 2.0)
Security issues
- MSA-08-0010: sql injection in HotPot module
- MSA-08-0012: Potential non-persistent XSS when searching for group members (MSSQL and Oracle only)
- MSA-08-0014: potential sql injection in events handling code
- MSA-08-0015: accessible profiles of deleted users
- MSA-08-0016: Email could be changed in profile without confirmation