User credentials are transmitted over an unencrypted channel. This information should always be transferred via an encrypted channel (HTTPS) to avoid being intercepted by malicious users.
Attack Details
Not available in the free trial
HTTP Request
Not available in the free trial
Impact
A third party may be able to read the user credentials by intercepting an unencrypted HTTP connection.
Remediation
Because user credentials are considered sensitive information, should always be transferred to the server over an encrypted connection (HTTPS).
bossdong886
commented
2 years ago
Vulnerability Description
User credentials are transmitted over an unencrypted channel. This information should always be transferred via an encrypted channel (HTTPS) to avoid being intercepted by malicious users.
Attack Details
Not available in the free trial
HTTP Request
Impact
A third party may be able to read the user credentials by intercepting an unencrypted HTTP connection.
Remediation
Because user credentials are considered sensitive information, should always be transferred to the server over an encrypted connection (HTTPS).