Question

1
Replies
31
Views
Close popover
Ponnurangam Nagaraj (PonnurangamN2827)
Vodafone

Vodafone
IN
PonnurangamN2827 Member since 2019 43 posts
Vodafone
Posted: July 19, 2019
Last activity: July 19, 2019
Closed

Security issues-Autocomplete enabled during Pen Test

Hi,

Our application had undergone pen testing and testing team reported below issue,

Autocomplete had enabled in sensitive form field

Password
lockScreenPassword
newPassword
confirmNewPassword

I have made the changes recommended in post https://community1.pega.com/community/product-support/question/security-issues-after-pen-test-password-field-autocomplete

This fix did not solve this issue.

security team is saying that password fields still do no use AUTOCOMPLETE=OFF settings. The password fields still do no use AUTOCOMPLETE=OFF settings.

PFA, request and response , security team is using for testing. Please recommend to mitigate this issue.

Earlier response is much appreciated.

Security
Moderation Team has archived post,
Close popover This thread is closed to future replies. Content and links will no longer be updated. If you have the same/similar Question, please write a new Question.