Skip to main content
Add as a preferred source on Google


Moodle Tackles LMS Security Vulnerabilities

Moodle's developers have released an update to the popular open source learning management system. The latest Moodle 2.0.2 and 1.9.11 releases address several major security vulnerabilities and also include some bug fixes and performance enhancements.

Moodle 2.0.2 tackles seven security flaws from the 2.0.1 release that developers characterized as "major," including cross-site scripting vulnerabilities, a cross-site request forgery issue, and potential issues involving disclosure of information. The 1.9 branch update only addresses three vulnerabilities--two related to cross-site scripting and one related to potential information disclosure.

In addition to security fixes, Moodle 2.0.2 includes dozens of other fixes and improvements, including performance enhancements and fixes to various minor issues with wikis, SCORM, saving, course backup, and assessments.

Outside of security issues, version 1.9.11 included only five bug fixes. Those were in areas of Google Chrome support for Moodle's HTML editor, time in reports and logs exported to Excel, and a few other minor problems.

Moodle 2.0.2 and Moodle 1.9.11 are both available now as free downloads from the Moodle site. Further details on the 2.0.2 update can be found here. Details on the 1.9.11 update can be found here. Direct downloads are available here.

About the Author

David Nagel is the former editorial director of 1105 Media's Education Group and editor-in-chief of THE Journal, STEAM Universe, and Spaces4Learning. A 30-year publishing veteran, Nagel has led or contributed to dozens of technology, art, marketing, media, and business publications.

He can be reached at [email protected]. You can also connect with him on LinkedIn at https://www.linkedin.com/in/davidrnagel/ .


Featured

  • clock and neon light trails

    Don't Wait for the Clock to Run Out on Digital Accessibility

    Public universities with over 50,000 students face the looming April 24, 2026, deadline to comply with new Americans with Disabilities Act (ADA) Title II standards. The urgency many feel is warranted: Implementation timelines are tight and the scope of compliance is extensive.

  • Businessman holding Chatbot with binary code, message and data 3d rendering

    Anthropic Criticizes OpenAI Ad Strategy

    Anthropic recently launched a multi-million dollar Super Bowl advertising campaign criticizing OpenAI's decision to start showing ads within ChatGPT.

  • Abstract speed motion blur in vibrant colors

    3 Ed Tech Shifts that Will Define 2026

    The digital learning landscape is entering a new phase defined by rapid advances in artificial intelligence, rising expectations for the student experience, and increasing pressure to demonstrate quality and accountability in online education.

  • glowing brain above stacked coins

    The Higher Ed Playbook for AI Affordability

    Fulfilling the promise of AI in higher education does not require massive budgets or radical reinvention. By leveraging existing infrastructure, embracing edge and localized AI, collaborating across institutions, and embedding AI thoughtfully across the enterprise, universities can move from experimentation to impact.