Jump to content

Topic on Talk:BUGREPORT

Subject: Weak Password Policy on Signup Inbox

1 (talkcontribs)

Hi Team, i would like to let you know about password management issue. PoC: 1.) Navigate to signup page. 2.) Fill you details and give password as simple as 1. 3.) You can see you will be registered and there is no strong enforcement. FIx: Use complex password management. Regards, tnx. Impact This password can easily be cracked using dictionary attack.

Reply to "Subject: Weak Password Policy on Signup Inbox"