Why can the password be changed without the actual password?
I just realized a security issue:
You don't have to enter the actual password when changing it. Can you please fix it?
Thanks and best regards,
Thank you for your report. I will pass this information to our developers.
The security issues still exists. Will it be fixed soon?
I think this is very important!
We will consider changing it in the future. Right now changing the password requires being logged in and the login process itself is very secure.