This weakness occurs when the application transmits or stores
					authentication credentials and uses an insecure method that is susceptible to
					unauthorized interception and/or retrieval.