CWE-261
Overview
- CWE ID
- 261
- CWE Name
- Weak Encoding for Password
- CWE Abstraction
- Base
- CWE structure
- Simple
- CWE Status
- Incomplete
Description
Obscuring a password with a trivial encoding does not protect the password.
Extended Description
Password management issues occur when a password is stored in plaintext in an application's properties or configuration file. A programmer can attempt to remedy the password management problem by obscuring the password with an encoding function, such as b