Description
Apache OpenMeetings 1.0.0 uses not very strong cryptographic storage, captcha is not used in registration and forget password dialogs and auth forms missing brute force protection.
Remediation
References
http://markmail.org/message/3hshl26omwjo6c5i
http://www.securityfocus.com/bid/99587
Related Vulnerabilities
CVE-2019-19771 Vulnerability in npm package cionstring
CVE-2022-39386 Vulnerability in npm package fastify-websocket
CVE-2023-32007 Vulnerability in maven package org.apache.spark:spark-core_2.12
CVE-2019-14653 Vulnerability in maven package org.webjars.bowergithub.pandao:editor.md
CVE-2019-10086 Vulnerability in maven package commons-beanutils:commons-beanutils