CWE-522
Insufficiently Protected Credentials
The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.
Official CWE-522 definition at MITREImpactr finds and proves weaknesses like CWE-522 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist