Vanilla 1 is no longer supported or maintained. If you need a copy, you can get it here.
Password reset requests
I've been getting multiple requests for password resets that were not initiated by me. Other administrators of the site have been getting the same. Obviously, we have not been clicking the link to initiate the reset, however, it seems that this is security breach. The request looks like this: ================== A request has been made to reset your password for MY WEBSITE URL. You can reset your password by copying and pasting the following URL into the location bar of your web browser: http://www.mywebsite.com/people.php?PostBackAction=PasswordResetForm&u= If you did not make this request, please disregard this email and your password will remain unchanged. ================= Any ideas on how this could be happening? My email is set to private, and so is the email of the other admins.
This discussion has been closed.