You wouldn't need to access the database, as long as there is a password reset option (which there is) any person with the right permissions could change someone's password.
Password reset in this website does not work that way. There are two ways to do a password reset, either using your known password, or using your email.
If someone's password is getting directly change it has to be directly on the server.
You wouldn't need to access the database, as long as there is a password reset option (which there is) any person with the right permissions could change someone's password.
Password reset in this website does not work that way. There are two ways to do a password reset, either using your known password, or using your email.
If someone's password is getting directly change it has to be directly on the server.
Removed by mod
If it's done via an email recovery then all you need is the link they are sent, which anyone with access to the email server would have.
Yes, which is only accessible to people that have database access, ie, not moderators.