Open sveeke opened 6 years ago
threatLevel="Elevated" type="Password Policy"
The Openbadge application does not use a secure password policy. The following issuer were found:
Impact: With a successful bruteforce or password guessing attack an attacker could gain access to a users information which would lead to confidentiality and integrity issues.
Recommendation:
The Openbadge application does not use a secure password policy.