org.apache.inlong is vulnerable to Weak Password Requirements. The vulnerability is due to a lack of a password policy, such as allowing a simple password (with any character or symbol) because the UserRequest.java
does not properly limit the length, which would allow an attacker to brute force the user’s password.