HTTP Plaintext Password Authentication

low Nessus Network Monitor Plugin ID 3018


The remote host passes information across the network in an insecure manner.


The remote client sent an HTTP auth request in cleartext. A base64-encoded password was detected.


Use SSL or a stronger authentication mechanism.

Plugin Details

Severity: Low

ID: 3018

Family: Web Clients

Published: 6/17/2005

Updated: 5/18/2018