diff --git a/main/project/WebContent/lesson_solutions/InsecureLogin.html b/main/project/WebContent/lesson_solutions/InsecureLogin.html
index 785a95bb6..94521d640 100644
--- a/main/project/WebContent/lesson_solutions/InsecureLogin.html
+++ b/main/project/WebContent/lesson_solutions/InsecureLogin.html
@@ -34,10 +34,10 @@ is free: <a href="http://www.wireshark.org/"> Wireshark</a>. Make sure
 you are capturing on the right interface. Click on
 the submit button ans stop the capturing. Now analyze the captured data.</p>
 <div align="center">
-<img src="stub">
+<img src="lesson_solutions/InsecureLogin_files/wireshark1.png"><br>
 <font size="2"> <b>Figure 1: Sniffed Traffic</b></font>
 </div>
-<p>As you can see we are interested in the HTTP Post request (marked blue) as
+<p>As you can see we are interested in the HTTP Post request as
 the password is transmitted there. The field for the password has
 the name clear_pass and has as value sniffy. Of course
 this is also the correct answer and you are done with stage 1.</p>
diff --git a/main/project/WebContent/lesson_solutions/InsecureLogin_files/wireshark1.png b/main/project/WebContent/lesson_solutions/InsecureLogin_files/wireshark1.png
new file mode 100644
index 000000000..135fc3606
Binary files /dev/null and b/main/project/WebContent/lesson_solutions/InsecureLogin_files/wireshark1.png differ