This project is not covered by Drupal’s security advisory policy.

Password change confirm screenshot

This is a Drupal 6 backport of #86299: Add "current password" field to "change password form" that forces you to enter your current password when changing your password in the user edit form. This helps prevent possible XSS attacks against user or admin accounts.

Project Information

Downloads