Mantis Bugtracker 

View Issue Details Jump to Notes ] Issue History ] Print ]
IDProjectCategoryView StatusDate SubmittedLast Update
0008779TestLinkSecurity - Generalpublic2019-10-03 03:462019-10-03 03:46
Assigned To 
PlatformOSOS Version
Product Version1.9.19 (2019 Q1) 
Fixed in Version 
Summary0008779: User password storage method (MD5) is weak
DescriptionThe testlink saves password using MD5 method to users table.
It has been proven that MD5 passwords can be broken more quickly by attackers.

For example, even in the WordPress, it is reported as a vulnerability like [^]

You must use a secure password hashing method such as bcrypt.
TagsNo tags attached.
Database (MySQL,Postgres,etc)MySQL
PHP Version
QA Team - Task Workflow Status
Attached Files

- Relationships

-  Notes
There are no notes attached to this issue.

- Issue History
Date Modified Username Field Change
2019-10-03 03:46 kenchan0130 New Issue

Copyright © 2000 - 2019 MantisBT Team
Powered by Mantis Bugtracker