Cameron1729

**Name of the Vulnerable Software and Affected Versions** Moodle (affected versions not specified) **Description** The issue concerns the cURL wrapper in Moodle, which retains original request headers when following redirects. This could lead to HTTP authorization header information being unintentionally sent in requests to redirect URLs. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.