Brute-forcing login
This page forms part of the Moodle security guidelines.
23 docs tagged with "Policies"
View All TagsBuffer overruns and other platform weaknesses
This page forms part of the Moodle security guidelines.
Coding style
The Moodle Coding Style guidelines
Command-line injection
This page forms part of the Moodle security guidelines.
Component Communication
The Moodle Coding Style guidelines
Confidential information leakage
This page forms part of the Moodle security guidelines.
Configuration information leakage
This page forms part of the Moodle security guidelines.
Cross-site request forgery
This page forms part of the Moodle security guidelines.
Cross-site scripting
This page forms part of the Moodle security guidelines.
Data-loss
This page forms part of the Moodle security guidelines.
Denial of service
This page forms part of the Moodle security guidelines.
Insecure configuration management
This page forms part of the Moodle security guidelines.
Moodle App Coding style
The Moodle App Coding Style guidelines
Naming conventions
Components
PHP CodeSniffer
PHPCodeSniffer is a tool used to analyse PHP code using a set of rules. In many cases these rules can be used to automatically fix the errors they identify.
Policies
This is the top-level page describing Moodle's coding standards and guidelines. It's the place to start if you want to know how to write code for Moodle.
Security
This page describes how to write secure Moodle code that is not vulnerable to anything that evil people may try to throw at it.
Session fixation
This page forms part of the Moodle security guidelines.
Social engineering
This page forms part of the Moodle security guidelines.
SQL coding style
This page describes recommended coding style for complex database queries.
SQL injection
This page forms part of the Moodle security guidelines.
Unauthenticated access
This page forms part of the Moodle security guidelines.
Unauthorised access
This page forms part of the Moodle security guidelines.