Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
I searched on SO and found that:
Is javascripts access to a password fields value considered a security risk?
However, it doesn’t say if using Javascript to do something like compare “password” and “confirm password” adds a security threat to the one already existing?
Thanks a lot if you could clarify this matter. Regards
What would your script do once it confirms that the two passwords are the same? If it sends the password over the wire, you are back to the exact question you linked to.
Even if you do not send the password anywhere the risk od code injection still remains
So, no additional security risk, but is does not remove any either