XML Request Possible userID / password Cleartext Remote Disclosure

Info Nessus Network Monitor Plugin ID 5214

Synopsis

The remote XML client posted a request with what appears to be an embedded userID and/or password.

Description

The remote XML client posted a request with what appears to be an embedded userID and/or password. You should manually verify that confidential data is not being leaked from the network.

Solution

Ensure that confidential data is not passed via plain text form fields.

Plugin Details

Severity: Info

ID: 5214

Family: Data Leakage

Published: 2004/08/18

Modified: 2015/06/01

Dependencies: 1735, 8314

Risk Information

Risk Factor: Info