Weak Password Requirements

CVE-2025-25749

High

7.1/10

An issue in HotelDruid version 3.0.7 and earlier allows users to set weak passwords due to the lack of enforcement of password strength policies.

The product does not require that users should have strong passwords, which makes it easier for attackers to compromise user accounts.