• Resolved ale8521

    (@ale8521)


    By intercepting the login requests made from the frontend to the backend, it was observed that the authentication credentials of the platform are sent in plain text

    SOLUTION
    Implement data encryption and / or masking mechanisms for all sensitive information that is sent from the client to the server

    OWASP
    OTG-AUTHN-001

Viewing 1 replies (of 1 total)
Viewing 1 replies (of 1 total)
  • The topic ‘[NSFW] Credentials sent in plain text’ is closed to new replies.