Moodle versions 1.4.2 and below suffer from cross site scripting and file inclusion vulnerabilities.
20a88b5ca7c3837bc9b00a2ac666df38ab3d969102f0541475500cbc3afa5baa
Moodle versions 1.3 and below suffer from a cross site scripting flaw.
45a15dcab7c11c1a129cbac1523b23eb9598a1a5f970a5cbcdb0f4dabfeb645f