• info
• discussion
• exploit
• solution
• references

Moodle 'etitle' Parameter HTML Injection Vulnerability

Solution:
The vendor has released updates. Please see the references for more information.


Debian Linux 4.0 amd64

• Debian moodle_1.6.3-2+etch1_all.deb
  http://security.debian.org/pool/updates/main/m/moodle/moodle_1.6.3-2+e tch1_all.deb

Debian Linux 4.0 ia-32

• Debian moodle_1.6.3-2+etch1_all.deb
  http://security.debian.org/pool/updates/main/m/moodle/moodle_1.6.3-2+e tch1_all.deb

Debian Linux 4.0 arm

• Debian moodle_1.6.3-2+etch1_all.deb
  http://security.debian.org/pool/updates/main/m/moodle/moodle_1.6.3-2+e tch1_all.deb

Debian Linux 4.0 hppa

• Debian moodle_1.6.3-2+etch1_all.deb
  http://security.debian.org/pool/updates/main/m/moodle/moodle_1.6.3-2+e tch1_all.deb

Debian Linux 4.0 sparc

• Debian moodle_1.6.3-2+etch1_all.deb
  http://security.debian.org/pool/updates/main/m/moodle/moodle_1.6.3-2+e tch1_all.deb

Debian Linux 4.0 s/390

• Debian moodle_1.6.3-2+etch1_all.deb
  http://security.debian.org/pool/updates/main/m/moodle/moodle_1.6.3-2+e tch1_all.deb

Debian Linux 4.0 powerpc

• Debian moodle_1.6.3-2+etch1_all.deb
  http://security.debian.org/pool/updates/main/m/moodle/moodle_1.6.3-2+e tch1_all.deb

Debian Linux 4.0 alpha

• Debian moodle_1.6.3-2+etch1_all.deb
  http://security.debian.org/pool/updates/main/m/moodle/moodle_1.6.3-2+e tch1_all.deb

Debian Linux 4.0 m68k

• Debian moodle_1.6.3-2+etch1_all.deb
  http://security.debian.org/pool/updates/main/m/moodle/moodle_1.6.3-2+e tch1_all.deb

Debian Linux 4.0

• Debian moodle_1.6.3-2+etch1_all.deb
  http://security.debian.org/pool/updates/main/m/moodle/moodle_1.6.3-2+e tch1_all.deb

Debian Linux 4.0 mipsel

• Debian moodle_1.6.3-2+etch1_all.deb
  http://security.debian.org/pool/updates/main/m/moodle/moodle_1.6.3-2+e tch1_all.deb

Debian Linux 4.0 ia-64

• Debian moodle_1.6.3-2+etch1_all.deb
  http://security.debian.org/pool/updates/main/m/moodle/moodle_1.6.3-2+e tch1_all.deb

Debian Linux 4.0 mips

• Debian moodle_1.6.3-2+etch1_all.deb
  http://security.debian.org/pool/updates/main/m/moodle/moodle_1.6.3-2+e tch1_all.deb

Moodle moodle 1.6.2

• Moodle moodle-1.6.7.tgz
  http://download.moodle.org/download.php/stable16/moodle-1.6.7.tgz

Moodle moodle 1.6.3

• Moodle moodle-1.6.7.tgz
  http://download.moodle.org/download.php/stable16/moodle-1.6.7.tgz

Moodle moodle 1.6.4

• Moodle moodle-1.6.7.tgz
  http://download.moodle.org/download.php/stable16/moodle-1.6.7.tgz

Moodle moodle 1.6.5

• Moodle moodle-1.6.7.tgz
  http://download.moodle.org/download.php/stable16/moodle-1.6.7.tgz

Moodle moodle 1.6.6

• Moodle moodle-1.6.7.tgz
  http://download.moodle.org/download.php/stable16/moodle-1.6.7.tgz

Moodle moodle 1.7.1

• Moodle Moodle_1.7.5.tgz
  http://download.moodle.org/download.php/stable17/moodle-weekly-17.tgz

Moodle moodle 1.7.2

• Moodle Moodle_1.7.5.tgz
  http://download.moodle.org/download.php/stable17/moodle-weekly-17.tgz

Moodle moodle 1.7.3

• Moodle Moodle_1.7.5.tgz
  http://download.moodle.org/download.php/stable17/moodle-weekly-17.tgz

Moodle moodle 1.7.4

• Moodle Moodle_1.7.5.tgz
  http://download.moodle.org/download.php/stable17/moodle-weekly-17.tgz