CVE-2024-38275 | Moodle up to 4.1.10/4.2.7/4.3.4/4.4 cURL Wrapper Authorization sensitive information in resource not removed before reuse (Nessus ID 261445)
A vulnerability was found in Moodle up to 4.1.10/4.2.7/4.3.4/4.4. It has been declared as problematic. Affected by this issue is some unknown functionality of the component cURL Wrapper. Executing manipulation of the argument Authorization can lead to sensitive information in resource not removed before reuse.
This vulnerability appears as CVE-2024-38275. The attack may be performed from remote. There is no available exploit.