In the backend, there is no validation for the value of `Role` that can be submitted. Limiting the select options in the frontend is not enough as user can easily use tools like Postman to try submitting custom `Role` values such as `admin`.

There is no secure password requirement such as minimum length, alphanumeric characters, and/or mixed case letters.

Explicit error message possibly revealing information that is unnecessary to be disclosed.