Have-I-Been-Pwned checker. Checks on registration and password change if the password is known to be published


This enables checking passwords against the Have-I-Been-Pwned database. Passwords are only checked on registration and when changed on the profile.

Additionally this can attempt to check the password from the browser using the same API

SMF 2.1.0 or higher only! PHP 7.3 or higher only