employeelogin.php insecurely hashes password

Question

employeelogin.php insecurely hashes password

Opened this issue 6 years ago · 0 comments

This file is using a SHA1'd hash, then MD5'd hash of a supplied password. It is recommended that passwords are hashed using PHP's password_hash() function or equivalent userland implementation.