Moodle 3.9.18

Unsupported Moodle Version

This version of Moodle is no longer supported and will not receive fixes for security risks.
You are encouraged to upgrade to a supported version of Moodle.

Release date: 14 November 2022

Here is the full list of fixed issues in 3.9.18.

General fixes and improvements

MDL-76169 - Various behat fixes for Question
MDL-75985 - Standardise HTML output when comparing editor values

For developers

MDL-75886 - Set editor for editor-specific tests
MDL-75887 - Provide way to set HTML Editor content regardless of the current editor

Security fixes

MSA-22-0028 - Apply upstream security fix to VideoJS library to remove XSS risk
MSA-22-0029 - Course restore - CSRF token passed in course redirect URL
MSA-22-0030 - Reflected XSS risk in policy tool
MSA-22-0032 - Blind SSRF risk in LTI provider library

General fixes and improvements​

For developers​

Security fixes​

General fixes and improvements

For developers

Security fixes