VULNERABILITY- PASSWORD RESET IS NOT PROPERLY ENFORCED
Russel Laurio
russellaurio12 at gmail.com
Fri Sep 25 10:12:41 EDT 2015
Hello Pidgin, i notice that if i request a new password and if the password
has been sent unto me, it is not properly reset or changed. I can still
login with my old password and the new password won't login.
Error
Invalid username or password
was displayed.
Kindly take a look sir.
God Bless,
Regards,
Russel
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://pidgin.im/cgi-bin/mailman/private/security/attachments/20150925/64c5fd7f/attachment.html>
More information about the security
mailing list