Secunia Security Advisory – Debian has issued an update for moodle. This fixes some vulnerabilities, which can be exploited by malicious users to conduct script insertion attacks, and by malicious people to bypass certain security restrictions or conduct cross-site request forgery and cross-site scripting attacks.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/73204/sa33239.txt
Source: https://packetstormsecurity.com/files/73204/Secunia-Security-Advisory-33239.html