CWE-13
ASP.NET Misconfiguration: Password in Configuration File
Storing a plaintext password in a configuration file allows anyone who can read the file access to the password-protected resource making them an easy target for attackers.
Official CWE-13 definition at MITREImpactr finds and proves weaknesses like CWE-13 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist