Man-in-the-Middle (MitM)

Moodle is vulnerable to man-in-the-middle MitM attacks. The repository/s3/S3.php does not verify that the host is secure before curling to it. This can allow a malicious user to conduct a MitM attack...