Project: Mass Password Reset
Security risk: *Less critical* 9∕25
Vulnerability: Insecure Randomness
This module enables you to reset passwords for all users based upon their
The module doesn't use a strong source of randomness, creating weak and
This vulnerability is mitigated by the fact that the site must be configured
to reveal the password to the attacker, which is a common configuration.
Install the latest version:
* If you use the Mass Password Reset module for Drupal 7.x, upgrade to Mass
Password Reset 7.x-1.1
Also see the Mass Password Reset project page.