di Michael Hawkins. When a quiz question bank is imported, it was possible for the question preview that is displayed to execute JavaScript that is written into the question bank.Severity/Risk:MinorVersions affected:3.5, 3.4 to 3.4.3, 3.3 to 3.3.6, 3.2 to 3.2.9, 3.1 to 3.1.12 and earlier unsupported versionsVersions fixed:3.5.1, 3.4.4, 3.3.7, 3.1.13Reported by:Les BellCVE identifier:CVE-2018-10891Changes
More info:
https://moodle.org/mod/forum/discuss.php?d=373371&parent=1505294
di Marina Glancy. Authenticated user are allowed to add HTML blocks containing scripts to their Dashboard and this is normally not a security issue because personal dashboard is visible to this user only. Through this security vulnerability users can move such block to other pages where they can be viewed by other users.Severity/Risk:SeriousVersions affected:3.4 to 3.4.2, 3.3 to 3.3.5, 3.2 to 3.2.8, 3.1 to 3.1.11 and earlier unsupported versionsVersions fixed:3.5, 3.4.3, 3.3.6, 3.2.9 and
More info:
https://moodle.org/mod/forum/discuss.php?d=371202&parent=1496356
di Michael Hawkins. No option existed to omit logs from data privacy exports, which may contain details of other users who interacted with the requester. Note this may be a serious privacy consideration for sites processing data exports.Severity/Risk:MinorVersions affected:3.5, 3.4.3, 3.3 to 3.3.6Versions fixed:3.5.1, 3.4.4, 3.3.7Reported by:Ralf HilgenstockCVE identifier:CVE-2018-10889Changes
More info:
https://moodle.org/mod/forum/discuss.php?d=373369&parent=1505292
di Marina Glancy. Students who posted on forum and exported the post to portfolios can download any stored Moodle file by changing download URLSeverity/Risk:MinorVersions affected:3.4 to 3.4.2, 3.3 to 3.3.5, 3.2 to 3.2.8, 3.1 to 3.1.11 and earlier unsupported versionsVersions fixed:3.5, 3.4.3, 3.3.6, 3.2.9 and 3.1.12Reported by:Brendan CoxWorkaround:Disable portfolios until the fix is applied. Portfolios are disabled by default in MoodleCVE identifier:CVE-2018-1135Changes
More info:
https://moodle.org/mod/forum/discuss.php?d=371201&parent=1496355
di Marina Glancy. Site policies agreement is not checked for logged in users who browse front page and activities on itSeverity/Risk:MinorVersions affected:3.4 to 3.4.2, 3.3 to 3.3.5, 3.2 to 3.2.8, 3.1 to 3.1.11 and earlier unsupported versionsVersions fixed:3.5, 3.4.3, 3.3.6, 3.2.9 and 3.1.12Reported by:Marina GlancyChanges (master):http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-61996Tracker issue:MDL-61996 User who did not agree to the site policies can
More info:
https://moodle.org/mod/forum/discuss.php?d=371203&parent=1496357
Red Hat Enterprise Linux: An update for flash-plugin is now available for Red Hat Enterprise Linux 6Supplementary.Red Hat Product Security has rated this update as having a security impact ofImportant. A Common Vulnerability Scoring System (CVSS) base score, which givesa detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. CVE-2018-15978
More info:
http://rhn.redhat.com/errata/RHSA-2018-3618.html
di Michael Hawkins. It was possible for the core_course_get_categories web service to return hidden categories, which should be omitted when fetching course categories. Note this only affects cases where a user has access to manage categories, but does not also have permission to view hidden categories.Severity/Risk:MinorVersions affected:3.5, 3.4 to 3.4.3, 3.3 to 3.3.6, 3.2 to 3.2.9, 3.1 to 3.1.12 and earlier unsupported versionsVersions fixed:3.5.1, 3.4.4, 3.3.7, 3.1.13Reported by:Marina
More info:
https://moodle.org/mod/forum/discuss.php?d=373370&parent=1505293
http://feedproxy.google.com/~r/sucuri/blog/~3/VvKVsYhPuFY/hackers-change-wordpress-siteurl-to-pastebin.html Last Friday, we reported on a hack that used a vulnerability in the popular WP GDPR Compliance plugin to change WordPress siteurl settings to erealitatea[.]net. At that time it was not clear who was behind the massive attack, since the erealitatea[.]net domain didn’t work and the infection simply broke the compromised sites. Our SiteCheck […]
More info:
http://feedproxy.google.com/~r/sucuri/blog/~3/VvKVsYhPuFY/hackers-change-wordpress-siteurl-to-pastebin.html
https://wpvulndb.com/vulnerabilities/9148
More info:
https://wpvulndb.com/vulnerabilities/9148
di Marina Glancy. Substituting URL in portfolios users can instantiate any class, this can also be exploited by users who are logged in as guests to create a DDoS attackSeverity/Risk:SeriousVersions affected:3.4 to 3.4.2, 3.3 to 3.3.5, 3.2 to 3.2.8, 3.1 to 3.1.11 and earlier unsupported versionsVersions fixed:3.5, 3.4.3, 3.3.6, 3.2.9 and 3.1.12Reported by:Brendan CoxWorkaround:Disable portfolios until the fix is applied. Portfolios are disabled by default in MoodleCVE
More info:
https://moodle.org/mod/forum/discuss.php?d=371204&parent=1496358
