/vulndb/Clear Text Login Form

An attacker eavesdropping the network may be able to capture the login information.

Solution

Access credentials should be sent encrypted to preserve the confidentiality and security of the user.

References

https://www.owasp.org/index.php/Guide_to_Authentication#Password_Guidelines