Project

General

Profile

Actions
Copy link

Bug #233

closed

authentication always succeeds with empty password

Added by Matt Jones over 23 years ago. Updated over 22 years ago.

Status:
Resolved
Priority:
Immediate
Assignee:
Jivka Bojilova
Category:
metacat
Target version:
Beta2
Start date:
05/08/2001
Due date:
% Done:

0%

Estimated time:
Bugzilla-Id:
233

Description

If logging into metacat, providing an empty string for a password always results
in successful authentication. This is a bug and security hole.

Actions
Copy link

Also available in: Atom PDF