Moodle 1.9.10

Release date: 25th October 2010

Over 110 issues were fixed in 1.9.10. (click to see them)

Security issues

This release upgrades some of the 3rd-party libraries that we use in Moodle. Keeping your Moodle site up to date is, as usual, highly recommended!

• MSA-10-0017 XSS vulnerability in YUI 2.4.0 through YUI 2.8.1
• MSA-10-0016 Multiple phpCAS library vulnerabilities
• MSA-10-0015 Customised HTML Purifier upgraded to 4.2.0

Also notice there was a security problem in the optional phpMyAdmin module:

• MSA-10-0014 Customised phpMyAdmin upgraded to 2.11.11

Moodle 1.8.13

Release date: 8th June 2010

Here is the full list of fixed issues in 1.8.13.

Functional changes

None, just bug fixes.

Security issues

Some of these vulnerabilities are potentially serious so we strongly recommend you upgrade.

• MSA-10-0010 Persistent Cross Site Scripting vulnerability in the MNET access control interface
• MSA-10-0011 Cross Site Scripting vulnerability in blog/index.php
• MSA-10-0012 KSES Security Filter Bypassing vulnerability
• MSA-10-0013 Potential Cross Site Scripting vulnerability in Quiz reports

Moodle 1.7.7

Release date: 28th January 2009

Here is the full list of fixed issues in 1.7.7.

Note: This is the last formal release of the 1.7 branch. Support for this branch has been discontinued. We highly recommend you upgrade!

Moodle 1.6.9

Release date: 28th January 2009

Here is the full list of fixed issues in 1.6.9.

Note: This is the last formal release of the 1.6 branch. Support for this branch has been discontinued. We highly recommend you upgrade!

See also

• Moodle version history for dates of release and links to notes for earlier versions

pt:Versões do Moodle ru:Примечания к версиям