Link:http://jobs.rwandandiaspora.gov.rw/cv/34testRwandanhackers.txt
Vulnerability description
Manual confirmation is required for this alert.
This page is using a weak password. . A weak password is short, common, a system default, or something that could be rapidly guessed by executing a brute force attack using a subset of all possible passwords, such as words in the dictionary, proper names, words based on the user name or common variations on these themes.
Affected items
/profileloginconfirm.php
The impact of this vulnerability
An attacker may access the contents of the password-protected page.
How to fix this vulnerability
Enforce a strong password policy. Don't permit weak passwords or passwords based on dictionary words.
No comments:
Post a Comment