Navigate to line 307~328 of the /mermber.php file：
First we register two users: User A, User B
This is my registered user A and user B. Let's see how to try any user password modification.
This shows that the password reset is successful and the password of User B is completely changed.
The first thing we want to consider is the value of the repswcode inserted at the time of registration, and the value when the password was successfully changed:
1, this value can not be a number
2, this value can not be less than 10 characters
3, this value can be an encrypted value to prevent blasting