Description
Apache OpenMeetings 1.0.0 uses not very strong cryptographic storage, captcha is not used in registration and forget password dialogs and auth forms missing brute force protection.
Remediation
References
http://markmail.org/message/3hshl26omwjo6c5i
http://www.securityfocus.com/bid/99587
Related Vulnerabilities
CVE-2019-0194 Vulnerability in maven package org.apache.camel:camel-core
CVE-2021-23330 Vulnerability in npm package launchpad
CVE-2019-1003060 Vulnerability in maven package org.jenkins-ci.plugins:zap
CVE-2022-45393 Vulnerability in maven package org.jenkins-ci.plugins:delete-log-plugin
CVE-2019-9154 Vulnerability in maven package org.webjars.npm:openpgp