Description Dolibarr ERP/CRM 4.0.4 stores passwords with the MD5 algorithm, which makes brute-force attacks easier. Remediation References CVE-2017-7888 Related Vulnerabilities MySQL CVE-2017-3460 Vulnerability (CVE-2017-3460) Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-24728) osTicket Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1317) WordPress Plugin Google AdSense by BestWebSoft Cross-Site Scripting (1.43) WordPress Plugin Event Notifier Cross-Site Scripting (1.2.0) Severity Critical Classification CVE-2017-7888 CWE-326 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities