Coronium password hash is too weak

Hi there.

I found that coronium use very simple hash algorithm and doesn’t use salt, which means if database is leaked it’s easy to bruteforce all stored passwords.

Is there any plans to update it?

See for more info on password hashing


This issue has been resolved in the 2.7.0 release:

Thank you for pointing this out.