Password reset confirm message should discourage social engineering

JammyDodger Closed August 4, 2023, 8:03am 11

Closed in favour of Email enumeration vulnerability on "Password Reset" dialogue

Topic		Replies	Views	Activity
Received password reset email though I didn’t request one? Support	15	3964	November 28, 2023
Password reset email leads to "Oops! That page doesn’t exist or is private." Support	3	635	September 30, 2021
Is it possible to hash the email database? Feature	23	1183	October 10, 2018
Do not leak emails on password reset Support	4	603	January 14, 2021
Why Doesn't Discourse Have a "Confirm Password" Section During The Signup Process? Feature	5	1368	January 9, 2018