search

retspen / webvirtcloud

WebVirtCloud is virtualization web interface for admins and users
1.63k stars 362 forks source link

fix insecure randomness #514

Closed sianciou closed 1 year ago

sianciou commented 1 year ago

Avoid using random() function to generate password or uuid, random() is a insecure randomness function where its use can lead to serious vulnerabilities such as easy-to-guess temporary passwords

catborise commented 1 year ago

Thanks for that