Moodle 2.2.4
Unsupported Moodle Version
This version of Moodle is no longer supported and will not receive fixes for security risks.
You are encouraged to upgrade to a supported version of Moodle.
You are encouraged to upgrade to a supported version of Moodle.
Release date: 9 July 2012
Here is the full list of fixed issues in 2.2.4.
Highlights
- MDL-28557 Group event now appears to teachers, managers and administrators
- MDL-33398 MDL-27368 Cron works when course completion is enabled
Functional changes
- MDL-24401 String default changes
Security issues
- MSA-12-0040 Capabilities issue through caching
- MSA-12-0041 XSS issue in LTI module
- MSA-12-0042 File access issue in blocks
- MSA-12-0043 Early information access issue in forum
- MSA-12-0044 Capability check issue in forum subscriptions
- MSA-12-0045 Injection potential in admin for repositories
- MSA-12-0046 Insecure protocol redirection in LDAP authentication
- MSA-12-0047 SQL injection potential in Feedback module
- MSA-12-0048 Possible XSS in cohort administration
- MSA-12-0049 Group restricted activity displayed to all users
- MSA-12-0050 Potential DOS attack through database activity
Fixes and improvements
- MDL-32866 Filemanager in private files now saves changes
- MDL-33583 "Keep all" automated backups now works
- MDL-33607 Add new wiki page no longer reports error writing to database
- MDL-33603 Database activity entries are linked correctly
- MDL-26892 Question images not lost during upgrade
- MDL-29924 Glossary attachments appear in filter popups
- MDL-25695 TOC links now work in Wiki