2 matches found
DRIVE.NET, Inc.: [www.drive2.ru] Insufficient Security Configurability - The user can using the same password as your current ID.
The current username and password can be set the same, making it easy to guess the password. As a weak password policy issue, The current username and password can be set the same, making it easy to guess the password. |Technical severity|VRT category| Specific vulnerability name|Variant / Affect...
DRIVE.NET, Inc.: [www.drive2.ru] Insufficient Security Configurability - Notification email is not sent when email is changed.
A notification email is not sent when the email address is changed. Notification email is not sent when email is changed. Best Practices As recommended practices, Important tasks like changing emails should have notification emails. |Technical severity|VRT category| Specific vulnerability...