Sending passwords via email Will compromise any passwords sent via email.
100%. But that is a different problem and a different attack vector than storing passwords in plain text for authentication. When reporting security issues, it’s important to be precise.