Any update on this? I could use this feature. I use a strong password but have multiple different websites that all log into my domain, so they all use the same password, but they are all different servers so I have different entries for them in BW. When I change my password, I need to be able to find all the entries that were setup with the old one so I can change them instead of waiting to get errors for the next week as I access different systems and then have to go update them one by one.
I have a folder, “sites that use my domain creds”. Oh password change day, I make my way through the vault entries in that folder.
Others chose to list all the URLs in a single vault entry. That does not work well for me because I also use my vault instead of a bookmark manager (my bookmark needs are minimal).
I recently encountered a similar situation and have no idea which website is associated with the password.
1 Like
I have the same thing from Chase, 6x. I wonder what Chase is finding that Bitwarden’s exposed thing isn’t finding. So added my vote to help simplify finding these password pieces.
1 Like
I agree that this should be a default feature of the free version. Otherwise just knowing that a PW was exposed is useless if you cannot identify the account and change the PW. This request has been on going since 2020, surely enough time for Bitwarden to implement the change especially with all the votes for it.
TY
1 Like
Here is a feature request. I get alerts every once in a while from identity monitoring service. They show the email and password that was hacked, but not the site where the hack originated. To find the site, I have to go through every 100+ accounts I have saved in my Bitwarden vault and compare the password. Would be great if Bitwarden had the feature to search the vault passwords, so a user could easily find the appropriate site and change the password.
@cookpeter Welcome to the forum!
I moved your post into an existing feature request thread. To support this feature, please scroll to the top of the thread and click the Vote button.
A work-around for your use-case would be to create a dummy login item in your vault, save the leaked password in the password field of the dummy item, and then go to the Web Vault and run a Reused Passwords Report — this will pull up your dummy login item, as well as any items that have a matching password.
2 Likes
Since I’m just now finding this thread looking for this specific feature and the first posts are from 2020, I guess it’s not coming anytime soon.
I was one of the exposed users from the recent Internet Archive hack, and I can see that a specific pass was used at others sites but I can’t tell which. It would have been so useful if Bitwarden could tell me.
1 Like
@schack Welcome to the forum!
Please see the work-around that I described in the comment just above yours.
1 Like
@Jasong222 Welcome to the forum!
I moved your post into the corresponding feature request directly.
I am using the website “Have I been pawned” nou they send me that by a breach my email and password where exposed on the dark web. now I’ll wanted to search Bitwarden for the password so I can find from witch website the login was, but I can’t search on passwords in Bitwarden. Is it an idea to make an option to search my vault on passwords so I can change my password.
@Pegasus Welcome to the forum!
I moved your post into the existing feature request on the same topic. (you can vote on feature requests as soon as you reach the next “trust level” – just spend some time on the forum)
PS: If you look through the posts here… – there are some “workarounds” / “solutions” to your issue already!
PPS: I updated the title from Search by password to Ability to search for passwords.
I remember a couple of years ago mentioning Chase’s credit journey giving us breached credentials (redacting smaller parts of those). So a search of your password manager’s username & password fields could be very helpful and let you narrow down to the entries you need to change.
I can only think that this has less to do with “small team of developers” and more about preventing the password to be indexed by the OS ? Or something to that effect ? Otherwise it seems a relatively easy thing to allow: let the search simply apply to all fields.
Let me add my example as well.
Chase Credit Journey has one of the better dark web reports as it will give you a good sized chunk of the credentials found on the dark web. It will redact only part of it.
ideally I would be able to zero in on the Bitwarden entry that uses that character string, so that I could quickly and easily manage it. Change password. Perhaps even change username. Rotate 2FA. Etc.
It seems that exporting the entire database to search a plain text CSV would open users up to more possibilities of a security leak than Bitwarden’s skilled developers providing a way to search both username & password fields.