CVE 2013-4114
The automatic update request in Nagstamont before 0.9.10 uses a cleartext base64 format for transmission of a username and password, which allows remote attackers to obtain sensitive information by sniffing the network.
See the 
CVE page on Mitre.org
for more details.
