I tested your demo site and discovered a vulnerability that could bypass password length and password complexity validation in your accountโs password change function.
link video PoC
https://drive.google.com/file/d/1r2TAeFdLA_eEREUccDoE86Yacavv79VR/view?usp=sharing