A customer of my company ran a Qualys scan and reported the following vulnerability:
AutoComplete Attribute Not Disabled for Password in Form Based Authentication
When the content is viewed using the Internet Explorer debugger it was found that the following attribute was
applied to all form fields:
Can someone explain this?
Do we have a false positive here?