XML Request Possible userID / password Cleartext Remote Disclosure

info Nessus Network Monitor Plugin ID 5214

Synopsis

The remote XML client posted a request with what appears to be an embedded userID and/or password.

Description

The remote XML client posted a request with what appears to be an embedded userID and/or password. You should manually verify that confidential data is not being leaked from the network.

Solution

Ensure that confidential data is not passed via plain text form fields.

Plugin Details

Severity: Info

ID: 5214

Family: Data Leakage

Published: 8/18/2004

Updated: 6/1/2015

Detections

Analytics