Another company I worked for was storing plain text passwords so that internal customer service reps could have a page that would allow them to log in and impersonate customers (to fix issues, etc.).
Oh ya, the password was passed - in plain text - in a query string as part of the link.
Good news is that it has since been fixed.
🤷♂️
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
Another company I worked for was storing plain text passwords so that internal customer service reps could have a page that would allow them to log in and impersonate customers (to fix issues, etc.).
Oh ya, the password was passed - in plain text - in a query string as part of the link.
Good news is that it has since been fixed.
🤷♂️