EPSS
Percentile
71.9%
Moodle is vulnerable to information disclosure. The library does not send Cache-Control: private headers, allowing a malicious user to send requests for files that were previously retrieved by a caching proxy server.
Cache-Control: private
git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-38743
openwall.com/lists/oss-security/2013/11/25/1
moodle.org/mod/forum/discuss.php?d=244479