I've just uploaded a new moodle version which only includes a new
patch for a XSS security problem.

The patch is a one-liner grabbed from upstream:
----------------------------------------------------------------------------
diff -urNad moodle-1.6.3~/mod/forum/discuss.php 
moodle-1.6.3/mod/forum/discuss.php
--- moodle-1.6.3~/mod/forum/discuss.php 2006-10-03 04:13:13.000000000 +0200
+++ moodle-1.6.3/mod/forum/discuss.php  2006-12-14 14:13:32.000000000 +0100
@@ -112,6 +112,7 @@
         if (abs($displaymode) == 1) {  // If flat AND parent, then force 
nested display this time
             $displaymode = 3;
         }
+        $navtail = '';
     } else {
         $parent = $discussion->firstpost;
         $navtail = format_string($discussion->name);
----------------------------------------------------------------------------

Best regards
-- 
Warp Networks | [EMAIL PROTECTED]    | http://warp.es
Debian        | [EMAIL PROTECTED] | http://www.debian.org


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Reply via email to