Educación a distancia Somos Expertos en servicios Moodle

  • Inicio
  • Moodle
    • Productos
    • Servicios
    • Sobre Moodle
    • Sobre Moodle Chile
  • Blog
    • Noticias
      • Seguridad Moodle
      • Planeta Moodle
      • Moodle.org Directo
      • Moodle Buzz
      • Moodle Foro
      • Google News
      • Todas las Noticias
    • Artículos
  • Cotizar

MSA-20-0015: Chapter name in book not always escaped with forceclean enabled

Detalles
Publicado el 21 Septiembre 2020
Categoría: Seguridad
  • Imprimir
  • Correo electrónico
von Michael Hawkins.  

It was possible to include JavaScript in a book's chapter title, which was not escaped on the "Add new chapter" page.

Note: By default this functionality is only available to trusted users (such as teachers), but has been included as a security issue as a precaution, since it was not sanitized on sites with forceclean...

Leer más...

MSA-20-0007: Vulnerable JavaScript libraries: jQuery 1.9.1 (upstream)

Detalles
Publicado el 20 Julio 2020
Categoría: Seguridad
  • Imprimir
  • Correo electrónico
by Michael Hawkins.  

The JQuery version used by the H5P library contained a prototype pollution risk, which has now been updated to a patched version.


...
Severity/Risk:Minor
Versions affected:3.8 to 3.8.3
Versions fixed:3.8.4 and 3.9
Reported by:weblendweb
CVE identifier:CVE-2019-11358
Changes (master):http://git.moodle.org/gw?p=moodle.git&a=search
Leer más...

MSA-20-0008: Reflected XSS in admin task logs filter

Detalles
Publicado el 20 Julio 2020
Categoría: Seguridad
  • Imprimir
  • Correo electrónico
by Michael Hawkins.  

The filter in the admin task log required extra sanitizing to prevent a reflected XSS risk.


...
Severity/Risk:Serious
Versions affected:3.9, 3.8 to 3.8.3 and 3.7 to 3.7.6
Versions fixed:3.9.1, 3.8.4 and 3.7.7
Reported by:Spyridon Chatzimichail
CVE identifier:CVE-2020-14320
Changes (master):http://git.moodle.org/gw?p=moodle.git&a
Leer más...

MSA-20-0009: Course enrolments allowed privilege escalation from teacher role into manager role

Detalles
Publicado el 20 Julio 2020
Categoría: Seguridad
  • Imprimir
  • Correo electrónico
by Michael Hawkins.  

Teachers of a course were able to assign themselves the manager role within that course.


...
Severity/Risk:Serious
Versions affected:3.9, 3.8 to 3.8.3, 3.7 to 3.7.6, 3.5 to 3.5.12 and earlier unsupported versions
Versions fixed:3.9.1, 3.8.4, 3.7.7 and 3.5.13
Reported by:Kien Hoang
CVE identifier:CVE-2020-14321
Changes (master):http:
Leer más...

MSA-20-0010: yui_combo should mitigate denial of service risk

Detalles
Publicado el 20 Julio 2020
Categoría: Seguridad
  • Imprimir
  • Correo electrónico
by Michael Hawkins.  

yui_combo needed to limit the amount of files it can load to help mitigate the risk of denial of service.


...
Severity/Risk:Serious
Versions affected:3.9, 3.8 to 3.8.3, 3.7 to 3.7.6, 3.5 to 3.5.12 and earlier unsupported versions
Versions fixed:3.9.1, 3.8.4, 3.7.7 and 3.5.13
Reported by:Yuri Zwaig
CVE identifier:CVE-2020-14322
Chang
Leer más...

MSA-20-0005: MathJax URL upgraded to later version to remove XSS risk (upstream)

Detalles
Publicado el 18 Mayo 2020
Categoría: Seguridad
  • Imprimir
  • Correo electrónico
by Michael Hawkins.  

MathJax versions 2.7.2 and earlier contain a stored XSS risk. The MathJax URL has been updated to reference a newer version, which has the vulnerability patched.


...
Severity/Risk:Serious
Versions affected:3.8 to 3.8.2, 3.7 to 3.7.5, 3.6 to 3.6.9, 3.5 to 3.5.11 and earlier unsupported versions
Versions fixed:3.8.3, 3.7.6, 3.6.10
Leer más...

MSA-20-0006: Remote code execution possible via SCORM packages

Detalles
Publicado el 18 Mayo 2020
Categoría: Seguridad
  • Imprimir
  • Correo electrónico
by Michael Hawkins.  

It was possible to create a SCORM package in such a way that when added to a course, it could be interacted with via web services in order to achieve remote code execution.


...
Severity/Risk:Serious
Versions affected:3.8 to 3.8.2, 3.7 to 3.7.5, 3.6 to 3.6.9, 3.5 to 3.5.11 and earlier unsupported versions
Versions fixed:3.8.3,
Leer más...

MSA-20-0002: Grade history report does not respect Separate groups mode in the course settings

Detalles
Publicado el 16 Marzo 2020
Categoría: Seguridad
  • Imprimir
  • Correo electrónico
by Michael Hawkins.  

Users viewing the grade history report without the 'access all groups' capability were not restricted to viewing grades of users within their own groups.


...
Severity/Risk:Minor
Versions affected:3.8 to 3.8.1, 3.7 to 3.7.4, 3.6 to 3.6.8, 3.5 to 3.5.10 and earlier unsupported versions
Versions fixed:3.8.2, 3.7.5, 3.6.9 and 3.5.11
R
Leer más...

MSA-20-0003: IP addresses can be spoofed using X-Forwarded-For

Detalles
Publicado el 16 Marzo 2020
Categoría: Seguridad
  • Imprimir
  • Correo electrónico
by Michael Hawkins.  

X-Forwarded-For headers could be used to spoof a user's IP, in order to bypass remote address checks.

PATCH NOTE: For user IPs to be checked (and logged) accurately after this patch is applied, sites using multiple levels of reverse proxies/balancers that append to the X-Forwarded-For header will need to configure the new "...

Leer más...

MSA-20-0004: Admin PHP unit webrunner tool requires additional input escaping

Detalles
Publicado el 16 Marzo 2020
Categoría: Seguridad
  • Imprimir
  • Correo electrónico
by Michael Hawkins.  

Insufficient input escaping was applied to the PHP unit webrunner admin tool.

NOTE: It is important to note that this update is only flagged as a precautionary measure, as it may provide limited CLI access to Moodle site admins. This may be considered a security risk in circumstances where admins do not ordinarily have...

Leer más...

MSA-20-0001: Stored XSS in message conversation overview

Detalles
Publicado el 20 Enero 2020
Categoría: Seguridad
  • Imprimir
  • Correo electrónico
by Michael Hawkins.  

Messages required extra sanitizing before updating the conversation overview, to prevent the risk of stored XSS.


...
Severity/Risk:Serious
Versions affected:3.8
Versions fixed:3.8.1
Reported by:Cid da Costa
Workaround:Disable the messaging system until the patch has been applied.
CVE identifier:CVE-2020-1691
Changes (master):http://g
Leer más...

MSA-19-0024: Assigned Role in Cohort did not un-assign on removal

Detalles
Publicado el 18 Noviembre 2019
Categoría: Seguridad
  • Imprimir
  • Correo electrónico
by Michael Hawkins.  

When a cohort role assignment was removed, the associated capabilites were not being revoked (where applicable).


...
Severity/Risk:Minor
Versions affected:3.7 to 3.7.2, 3.6 to 3.6.6, 3.5 to 3.5.8 and earlier unsupported versions
Versions fixed:3.7.3, 3.6.7 and 3.5.9
Reported by:Yusuf Yilmaz, Mick Cassell
CVE identifier:CVE-2019-148
Leer más...

MSA-19-0025: Add additional verification for some OAuth 2 logins to prevent account compromise

Detalles
Publicado el 18 Noviembre 2019
Categoría: Seguridad
  • Imprimir
  • Correo electrónico
by Michael Hawkins.  

OAuth 2 providers who do not verify users' email address changes require additional verification during sign-up to reduce the risk of account compromise.


...
Severity/Risk:Serious
Versions affected:3.7 to 3.7.2, 3.6 to 3.6.6, 3.5 to 3.5.8 and earlier unsupported versions
Versions fixed:3.7.3, 3.6.7 and 3.5.9
Reported by:CeDiS Team
Leer más...

MSA-19-0026: Blind XSS reflected in some locations where user email is displayed

Detalles
Publicado el 18 Noviembre 2019
Categoría: Seguridad
  • Imprimir
  • Correo electrónico
by Michael Hawkins.  

User emails required additional sanitizing to prevent blind XSS risk on some pages.


...
Severity/Risk:Minor
Versions affected:3.7 to 3.7.2
Versions fixed:3.7.3
Reported by:Yuri Zwaig
CVE identifier:CVE-2019-14881
Changes (master):http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-66762
Tracker
Leer más...

MSA-19-0027: Open redirect in Lesson edit page

Detalles
Publicado el 18 Noviembre 2019
Categoría: Seguridad
  • Imprimir
  • Correo electrónico
by Michael Hawkins.  

An open redirect existed in the Lesson edit page.


...
Severity/Risk:Minor
Versions affected:3.7 to 3.7.2, 3.6 to 3.6.6, 3.5 to 3.5.8 and earlier unsupported versions
Versions fixed:3.7.3, 3.6.7 and 3.5.9
Reported by:Paul Holden
CVE identifier:CVE-2019-14882
Changes (master):http://git.moodle.org/gw?p=moodle.git&a=search&h=HE
Leer más...

MSA-19-0028: Email media URL tokens were not checking for user status

Detalles
Publicado el 18 Noviembre 2019
Categoría: Seguridad
  • Imprimir
  • Correo electrónico
by Michael Hawkins.  

Tokens used to fetch inline attachments in email notifications were not disabled when a user's account was no longer active. Note: to access files, a user would need to know the file path, and their token.


...
Severity/Risk:Minor
Versions affected:3.7 to 3.7.2 and 3.6 to 3.6.6
Versions fixed:3.7.3 and 3.6.7
Reported by:Juan Leyva
C
Leer más...

MSA-19-0029: Reflected XSS possible from some fatal error messages

Detalles
Publicado el 18 Noviembre 2019
Categoría: Seguridad
  • Imprimir
  • Correo electrónico
by Michael Hawkins.  

Fatal error messages required extra sanitizing to prevent reflected XSS risks on some pages.


...
Severity/Risk:Serious
Versions affected:3.7 to 3.7.2, 3.6 to 3.6.6, 3.5 to 3.5.8 and earlier unsupported versions
Versions fixed:3.7.3, 3.6.7 and 3.5.9
Reported by:Yuriy Dyachenko
CVE identifier:CVE-2019-14884
Changes (master):http://git
Leer más...

Re: MSA-19-0019: Course creation did not check the creator's role assignment capability before automatically assigning them as a teacher in the course

Detalles
Publicado el 11 Noviembre 2019
Categoría: Seguridad
  • Imprimir
  • Correo electrónico
by Michael Hawkins.  

Please note, this issue has been revisited in MDL-66683, as part of the latest minor releases. It appears this was not a bug, and that the original behaviour was the intended functionality. As this change was negatively impacting some course-creation workflows, the functionality has been reverted as of versions 3.7.3,...
Leer más...

MSA-19-0018: JavaScript injection possible in some Mustache templates via recursive rendering from contexts

Detalles
Publicado el 16 Septiembre 2019
Categoría: Seguridad
  • Imprimir
  • Correo electrónico
by Michael Hawkins.  

Mustache helper tags that were included in template contexts were not being escaped before that context was injected into another Mustache helper, which could result in script injection in some templates.


...
Severity/Risk:Serious
Versions affected:3.7 to 3.7.1, 3.6 to 3.6.5, 3.5 to 3.5.7 and earlier unsupported versions
Versions
Leer más...

MSA-19-0019: Course creation did not check the creator's role assignment capability before automatically assigning them as a teacher in the course

Detalles
Publicado el 16 Septiembre 2019
Categoría: Seguridad
  • Imprimir
  • Correo electrónico
by Michael Hawkins.  

Users with the capability to create courses were assigned as a teacher in those courses, regardless of whether they had the capability to be automatically assigned that role.


...
Severity/Risk:Minor
Versions affected:3.7 to 3.7.1, 3.6 to 3.6.5, 3.5 to 3.5.7 and earlier unsupported versions
Versions fixed:3.7.2, 3.6.6 and 3.5.8
Rep
Leer más...

Más artículos...

  1. MSA-19-0020: Python Machine Learning dependency versions bumped
  2. MSA-19-0021: Activity :addinstance capabilities were not respected when creating a course in single activity format
  3. MSA-19-0022: Open redirect in the mobile launch endpoint could be used to expose mobile access tokens
  4. MSA-19-0023: Forum subscribe link contained an open redirect if forced subscription mode was enabled
  5. MSA-19-0013: Missing sesskey (CSRF) token in loading/unloading XML files
  6. MSA-19-0014: Ability to delete glossary entries that belong to another glossary
  7. MSA-19-0015: Quiz group overrides did not observe groups membership or accessallgroups
  8. MSA-19-0016: Assignment group overrides did not observe separate groups mode
  9. MSA-19-0017: Upgrade TCPDF library for PHP 7.3 and bug fixes (upstream)
  10. MSA-19-0010: All messaging conversations could be viewed
  11. MSA-19-0011: Open redirect in upload cohorts page
  12. MSA-19-0012: Private files uploaded via incoming mail processing could bypass quota restrictions
  13. MSA-19-0004: Log in as functionality exposed to JavaScript risk on other users' Dashboards
  14. MSA-19-0005: Logged in users could view all calendar events
  15. MSA-19-0006: Users could elevate their role when accessing the LTI tool on a provider site
  16. MSA-19-0007: Stored HTML in assignment submission comments allowed links to be opened directly
  17. MSA-19-0008: Secure layout contained an insecure link in Boost theme
  18. MSA-19-0009: get_with_capability_join/get_users_by_capability not aware of context freezing
  19. MSA-19-0001: Manage groups capability is missing XSS risk flag
  20. MSA-19-0002: Blind SSRF Risk in /badges/mybackpack.php

Página 4 de 58

  • Inicio
  • Anterior
  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • Siguiente
  • Final
  • Home
  • Blog
  • Noticias
  • Todas las Noticias

Moodle-Chile.cl is not affiliated with or endorsed by the Moodle Project.

Powered by TILATAM S.A.