Hi Guys,I just wanted to know, because recently I have been hacked. I signed upto a Activeboard forum and stupidly I used the same password as I always do. The Admin then changed the email of my account, sent for a new password and it sent him my current password! No security features whatsoever!I was just wondering if you have ever been caught with this hack, and if you know any other scripts (forums, blogs etc) that do the same.
Proper forgot password systems shouldn't email the current password, but only allow you to choose a new password.