Séverin Terrier

**Name of the Vulnerable Software and Affected Versions** Moodle versions 1.9.x through 1.9.18 Moodle versions 2.0.x through 2.0.9 Moodle versions 2.1.x through 2.1.6 Moodle versions 2.2.x through 2.2.3 **Description** The issue allows remote authenticated users to cause a denial of service by consuming CPU resources when using the advanced-search feature on a database activity with many records. **Recommendations** For versions 1.9.x through 1.9.18, update to version 1.9.19 or later. For versions 2.0.x through 2.0.9, update to version 2.0.10 or later. For versions 2.1.x through 2.1.6, update to version 2.1.7 or later. For versions 2.2.x through 2.2.3, update to version 2.2.4 or later.