HackerOne Disclosed Reports - 2026-03-27

HackerOne Disclosed Reports - 2026-03-27 - Printable Version

+- Dark C0d3rs (https://darkcoders.wiki)
+-- Forum: Exploit Log (https://darkcoders.wiki/Forum-Exploit-Log)
+--- Forum: Research Papers/Vulnerability reports (https://darkcoders.wiki/Forum-Research-Papers-Vulnerability-reports)
+--- Thread: HackerOne Disclosed Reports - 2026-03-27 (/Thread-HackerOne-Disclosed-Reports-2026-03-27)

HackerOne disclosed reports - 2026-03-27 - hashXploiter - 03-28-2026

Low
resolved

Password Strength Policy Bypass via Server-Side Validation Flaw

Bug reported by was disclosed at March 27, 2026, 7:49 pm | Business Logic Errors

A password strength policy bypass was discovered due to a server-side validation flaw. The password strength policy was only enforced in the browser, not on the server side.