Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

Sensitive Data Not Over SSL

This page lists 9 vulnerabilities in this category.

Vulnerability Name
CVE
CWE
Severity
Basic authentication over HTTP
-
CWE-522
High
ASP.NET: Failure To Require SSL For Authentication Cookies
-
CWE-319
Medium
Insecure transition from HTTP to HTTPS in form post
-
CWE-200
Medium
Password transmitted over HTTP
-
CWE-523
Medium
SSL/TLS Not Implemented
-
CWE-319
Medium
Insecure HTTP Usage
-
CWE-1428
Medium
Active Mixed Content over HTTPS
-
CWE-1428
Medium
Insecure transition from HTTPS to HTTP in form post
-
CWE-200
Low
Passive Mixed Content over HTTPS
-
CWE-1428
Low