A critical vulnerability was discovered in React Server Components (Next.js). Our systems remain protected but we advise to update packages to newest version. Learn More.
AI OnAI Off
Login allowed with space in password
Hi,
This is probably not an EPiServer thing but wondered if anyone had encontered this before. A deployed site we have authenticates a user when they add a space to the beginning or end of their password. The development version of the site does not behave this way and produces a login failed message which I would expect.
The fact that the same code behaves differently suggests a difference between the environments or config is causing this. I've compared the config files between the two sites and as far as I can tell there is nothing different that would cause this to happen on the deployed site.
It's EPiServer 6 R2.
Any ideas?
Mark