Skip to main content

Moodle 1.9.3

Unsupported Moodle Version
This version of Moodle is no longer supported and will not receive fixes for security risks.
You are encouraged to upgrade to a supported version of Moodle.

Release date: 15th October 2008

Here is the full list of fixed issues in 1.9.3.


  • Major SCORM module improvements
    • Passes all SCORM 1.2 Conformance tests
    • Improved Visualisation of SCORM objects
    • New Debug tool
    • Improved handling of AICC objects
    • Better cross-platform compatible JavaScript
    • Improved the interaction of SCO completion and Gradebook interaction
    • TOC fixes - structure, expand/collapse, and prerequisites
    • Corrected element behaviour for cmi.objectives, cmi.comments_from_learner, cmi.interactions, cmi.launch_data
  • New capabilities: moodle/role:safeoverride, moodle/course:changefullname, moodle/course:changeidnumber and moodle/course:changeshortname
  • New option in HTML settings to allow HTML tags in activity and resource names
  • Improved detection of misconfigured dataroot directory
  • New Manage authentication setting for relaxing email domain restrictions when changing email
  • New Enrolments setting for disabling the email welcome message which users receive when they self-enrol in a course
  • New Internal enrolment setting for disabling the enrolment key hint
  • New Gradebook report setting to show/hide percentages in the user report
  • New statistics setting for specifying the maximum number of days processed in each stats execution
  • Checkbox user profile field
  • Indication for administrators when a site is in Maintenance mode
  • Fix for major groups upgrade problem
  • Fix for Firefox password manager problem
  • Fixes for course category edit and add capabilities problems
  • Multiple choice questions in quizzes. Following feedback, we have reversed the change in Moodle 1.9 that showed students feedback to all option, not just the ones they had selected. (MDL-14643)
  • The regression in 1.9.2 that broke images in quiz questions has been fixed.
  • Starting in October 2008, codes need true 10cc integers. (MDL-16715)

Security issues

  • MSA-08-0019: customised PhpMyAdmin package upgraded to
  • MSA-08-0020: quiz/questions capabilities lack some risk flags in access.php files
  • MSA-08-0021: design deficiency combined with incorrect use of format_string() allowing XSS
  • MSA-08-0022: XSS through Wiki page titles
  • MSA-08-0023: CSRF in messaging setting
  • MSA-08-0024: Overriding of frozen values in Moodle forms
  • MSA-08-0025: SQL injection in tags code
  • MSA-08-0026: customised HTML Purifier upgraded to 2.1.5

New language pack

  • Bangla - Razib Mustafiz

(See Translation credits for additional details.)