Wireshark intercepts only those passwords. which are entered at the moment of connection? those passwords that are saved, sites. which were previously logged in - Wireshark will not be able to get them?

edit

Wireshark is a packet analyser and that means it must have visibility of those packets in a capture file.

If a capture file contains passwords, transmitted in the clear over the wire, then it may be able to display them.

Usually, such info is never actually transmitted, instead a hash representing the password is sent that may itself be encrypted.

Wireshark is a network monitoring tool, it works by capturing the data traffic as it passes the network. If there are (cleartext) passwords visible in the network traffic, it can be seen with Wireshark.

But Wireshark is by no means a tool to gather all kinds of (previously exchanged) authentication information.