Vulnerability Database

Products
CyStack Intelligent Products
Explore our all-in-one security suite for robust digital protection, covering web app scans, device management, and secret safeguarding.
CyStack VulnScan
Popular
Web app security scanning & monitoring with external firewall methods. Detect vulnerabilities, manage lists & certificates easily.
Locker Secrets Manager
New
Securely manage tokens, passwords, certificates, and keys with an intuitive UI, CLI, or SDK.
SafeChain Blockchain Security
Smart-contract scanner & blockchain monitor. Identify vulnerabilities & get token anomaly alerts.
Locker Password Manager
Securely store passwords, manage sensitive data, & enable one-click logins.
CyStack Endpoint
New
Advanced device tracking, remote management & access controls for all-sized businesses.
WhiteHub Bug Bounty
Elevate cybersecurity. Engage 3000+ hackers, tailor rewards.
CyStack Trust Center
Simplify showcasing cybersecurity commitment. Auto-generate dedicated security page integrated with domains.
CyStack Data Leak Detection
Secure your brand, ideas, and customer information by quickly detecting data leaks to steer clear of costly breaches.
Services
Security Assessment
Security Operations
Security Consulting
Blockchain Security
Solutions
By Use Case
For Startup
For Degree 13 Compliance
Anti-Ransomware
Security Audit
Security Operations
Data Security
Security Compliance
Blockchain Security
By Industry
For Public Sector
For Financial Services
For Ecommerce
For Healthcare
For Blockchain Companies
Looking for something?
We provide you with the latest news, trends, and insights in the fast-paced world of tech. Join us on this exciting journey and discover the transformative power of technology today.
Company
Resources

English EN

Tiếng Việt VI

Description

User credentials are transmitted over an unencrypted channel. This information should always be transferred via an encrypted channel (HTTPS) to avoid being intercepted by malicious users.

Remediation

Because user credentials are considered sensitive information, should always be transferred to the server over an encrypted connection (HTTPS).

Try Deep Scan Version

Give your DevOps team the freedom to innovate and create outstanding products without being held back by security concerns.