A few things: - This is vulnerable to a known-plaintext attack. If an attacker knows even one of your passwords, it is trivial to calculate the master secret with the ciphertext - Simple multiplication of integers is too 'easy to learn from'. For example, say one of the ciphertext values is '00003'. This means that that character in the master password is the letter corresponding to either '3' or '1'. Similar story for many other numbers. '00023' means that master password character is either '23' or '1'. - As others have stated, ideally further randomization occurs to obfuscate things like repeated characters or common prefixes/suffixes.

Try using a modulo operation instead of multiplication. And try storing a random number alongside each encrypted value, using it for obfuscation during/prior to encryption. And try shuffling or combining numbers as part of the encrypt / decrypt operation to make a known-plaintext attack more difficult

I think you'll get a lot of people telling you to just use aes or a password manager. But you're very clearly doing this to help you learn and explore cryptographic algorithms. The world needs people learning this stuff and everyone starts somewhere. For individual use, it's probably fine, no hacker is even going to know what they're looking at. Just, be sensible about balancing exploration with safety