What are you looking for?

Learn about Moodle's products, like Moodle LMS or Moodle Worplace, or find a Moodle Certified Service Provider.

Moodle.com

Our social network to share and curate open educational resources.

MoodleNet

Courses and programs to develop your skills as a Moodle educator, administrator, designer or developer.

Moodle Academy

Moodle.com
Learn about Moodle's products, like Moodle LMS or Moodle Worplace, or find a Moodle Certified Service Provider.

MoodleNet
Our social network to share and curate open educational resources.

Moodle Academy
Courses and programs to develop your skills as a Moodle educator, administrator, designer or developer.

Moodle 3.8.8

Release date: 8 March 2021

Security fixes

MSA-21-0006 Stored XSS via ID number user profile field
MSA-21-0007 Stored XSS and blind SSRF possible via feedback answer text
MSA-21-0008 User full name disclosure within online users block
MSA-21-0009 Bypass email verification secret when confirming account registration
MSA-21-0010 Fetching a user's enrolled courses via web services did not check profile access in each course
MSA-21-0011 JQuery versions below 3.5.0 contain some potential vulnerabilities (upstream)