Shortly you needed to find out which hash had been used to save the passwords in the database so that they were not saved directly according to what the user launches at the time of their registration. Searching I found the following website , which if you know the initial password you can see the results that the hash's will generate on top of this password. this seemed somewhat vulnerable to me as soon as I discovered what Hash had been used, and since I have access to the bank where the passwords are saved, I just compared what was stored in the bank with what the site generated me and so I discovered which Hash had been used.
My question is:
To use a salt string in the original password helps make the password even safer, as it would be necessary to access the database and access the passwords, salt was used, making it more difficult to find out the original password entered by users.