Hello,
I deployed Moodle 2.8.3 in my School. When I was going to publish it on Internet, the security deparment employed IBM Security AppScan.
And the problem I must solve to publish moodle is an issue with sql injetction in:
http://domain/moodle/lib/javascript.php/1428535440/lib/javascript-static.js
Does anybody did something to solve this?
Thanks.
When you clicked the button to make the above forum post did you see the bit saying
DO NOT REPORT NEW VULNERABILITIES HERE!
New security issues should be reported in the Moodle Tracker with an appropriate security level.
However, I don't understand what issue you think you have found. What makes "IBM Security AppScan" think there is any SQL injection there? (If there really is an issue, please do not explain here. Explain it in a security issue in the tracker.)
