MSA-20-0014: Denial of service risk in file picker unzip functionality

von Michael Hawkins.  

The decompressed size of zip files was not checked against available user quota before unzipping them, which could lead to a denial of service risk.


...
Severity/Risk:Serious
Versions affected:3.9 to 3.9.1, 3.8 to 3.8.4, 3.7 to 3.7.7, 3.5 to 3.5.13 and earlier unsupported versions
Versions fixed:3.9.2, 3.8.5, 3.7.8 and 3.5.14
Rep
Leer más...

MSA-20-0013: Log in as capability in a course context may lead to some privilege escalation

von Michael Hawkins.  

Users with "Log in as" capability in a course context (typically, course managers) may gain access to some site administration capabilities by "logging in as" a System manager.


...
Severity/Risk:Minor
Versions affected:3.9 to 3.9.1, 3.8 to 3.8.4, 3.7 to 3.7.7, 3.5 to 3.5.13 and earlier unsupported versions
Versions fixed:3.9.2,
Leer más...

MSA-20-0012: Reflected XSS in tag manager

von Michael Hawkins.  

The filter in the admin task log required extra sanitizing to prevent a reflected XSS risk.


...
Severity/Risk:Serious
Versions affected:3.9 to 3.9.1, 3.8 to 3.8.4, 3.7 to 3.7.7, 3.5 to 3.5.13 and earlier unsupported versions
Versions fixed:3.9.2, 3.8.5, 3.7.8 and 3.5.14
Reported by:Luuk Verhoeven
CVE identifier:CVE-2020-25628
Chang
Leer más...

MSA-20-0011: Stored XSS via moodlenetprofile parameter in user profile

von Michael Hawkins.  

The moodlenetprofile user profile field required extra sanitizing to prevent a stored XSS risk.


...
Severity/Risk:Serious
Versions affected:3.9 to 3.9.1
Versions fixed:3.9.2
Reported by:Kien Hoang
CVE identifier:CVE-2020-25627
Changes (master):http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-692
Leer más...