Ineed some help,
I looking at the DB,
And I see something interesting and trying to understand what command can cause it.
Looking at table logstore_standard_log I see event \core\event\user_password_updated
where the userid is a student and relateduserid is not the same user id,
Trying to figure out how this is possible?
Even if the student didn't change the password how can he try to do it?
If it helps in other I get "forgottenreset"
This is the SQL query:
select * from logstore_standard_log WHERE eventname like '%password%' AND relateduserid != userid;
Thanks a lot.