Autocomplete Enabled
Daniel Atallah
datallah at pidgin.im
Sat Sep 21 07:38:01 EDT 2013
The data in our trac instance is not, IMO, sensitive enough to warrant the
inconvenience of disabling browsers' password remembering features.
-D
On Sep 21, 2013 3:45 AM, "chaskar 87" <chaskar87 at gmail.com> wrote:
> Dear Team,
>
> We found following vulnerability on below pages.
>
> *Autocomplete Enabled on Password Field*
> https://developer.pidgin.im/login
> https://developer.pidgin.im/prefs/account
>
> Recommendation : Autocomplete should be off on user input fields.
>
> --
> Thanks & Regards
>
> *Pralhad Chaskar*
> https://twitter.com/c0d3xpl0it
>
>
> _______________________________________________
> security mailing list
> security at pidgin.im
> http://pidgin.im/cgi-bin/mailman/listinfo/security
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://pidgin.im/cgi-bin/mailman/private/security/attachments/20130921/3e9cd113/attachment.html>
More information about the security
mailing list