Password Strength Meter BUG

  • Resolved gestaltio

    (@gestaltio)


    10 years, 2 months ago

    WordPress 4.4.2
    WooCommerce 2.5.4
    Production Website: https://www.supergoop.com

    I’m not sure how long the “password strength” meter / functionality has been live, but customers have complained that they cannot reset their passwords.

    As I tested it, it seems that the regex is buggy. As I type, the password can go from valid > invalid > back to valid by adding *additional* characters. Also, some passwords that satisfy the (poorly-defined) requirements also fail to validate.

    For example:

    SamplePass2015!# => invalid (weak) …. why is this invalid? certainly not weak
    SamplePass2015!## => valid (medium) …. why?
    SamplePass2015!### => invalid (weak) …. ?
    SamplePass2015!#### => invalid (weak) …. ?
    SamplePass2015!##### => valid (medium) …. ?

    This is a critical issue, as it’s keeping users from successfully registering and resetting passwords.

    Please advise.

    https://ww.wp.xz.cn/plugins/woocommerce/

Viewing 3 replies - 1 through 3 (of 3 total)
Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘Password Strength Meter BUG’ is closed to new replies.