MSA-18-0010: User can shift a block from Dashboard to any page

by Marina Glancy.  

Authenticated user are allowed to add HTML blocks containing scripts to their Dashboard and this is normally not a security issue because personal dashboard is visible to this user only. Through this security vulnerability users can move such block to other pages where they can be viewed by other users.


...
Severity/Risk:Serious
V
Register to read more...

MSA-18-0009: Portfolio forum caller class allows a user to download any file

by Marina Glancy.  

Students who posted on forum and exported the post to portfolios can download any stored Moodle file by changing download URL


...
Severity/Risk:Minor
Versions affected:3.4 to 3.4.2, 3.3 to 3.3.5, 3.2 to 3.2.8, 3.1 to 3.1.11 and earlier unsupported versions
Versions fixed:3.5, 3.4.3, 3.3.6, 3.2.9 and 3.1.12
Reported by:Brendan Cox
Wor
Register to read more...

MSA-18-0008: Users can download any file via portfolio assignment caller class

by Marina Glancy.  

Students who submitted assignments and exported it to portfolios can download any stored Moodle file by changing download URL


...
Severity/Risk:Minor
Versions affected:3.4 to 3.4.2, 3.3 to 3.3.5, 3.2 to 3.2.8, 3.1 to 3.1.11 and earlier unsupported versions
Versions fixed:3.5, 3.4.3, 3.3.6, 3.2.9 and 3.1.12
Reported by:Brendan Cox
Wor
Register to read more...

MSA-18-0007: Calculated question type allows remote code execution by Question authors

by Marina Glancy.  

Teacher creating Calculated question can intentionally cause remote code execution on server


...
Severity/Risk:Serious
Versions affected:3.4 to 3.4.2, 3.3 to 3.3.5, 3.2 to 3.2.8, 3.1 to 3.1.11 and earlier unsupported versions
Versions fixed:3.5, 3.4.3, 3.3.6, 3.2.9 and 3.1.12
Reported by:Robin Peraglie
CVE identifier:CVE-2018-1133
Cha
Register to read more...