| Details | |
|---|---|
| Alert ID | 10105-2 |
| Alert Type | Passive |
| Status | release |
| Risk | Medium |
| CWE | 326 |
| WASC | 4 |
| Technologies Targeted | All |
| Tags |
CWE-326 OWASP_2017_A02 OWASP_2017_A03 OWASP_2021_A01 OWASP_2021_A02 POLICY_DEV_STD POLICY_PENTEST POLICY_QA_STD WSTG-V42-ATHN-01 |
| More Info |
Scan Rule Help |
Summary
HTTP basic or digest authentication has been used over an unsecured connection. The credentials can be read and then reused by someone with access to the network.