An insufficiently protected credentials vulnerability exists in curl 4.9 to
and include curl 7.82.0 are affected that could allow an attacker to
extract credentials when follows HTTP(S) redirects is used with
authentication could leak credentials to other services that exist on
different protocols or port numbers.