Description
Apache OpenMeetings 1.0.0 uses not very strong cryptographic storage, captcha is not used in registration and forget password dialogs and auth forms missing brute force protection.
Remediation
References
http://markmail.org/message/3hshl26omwjo6c5i
http://www.securityfocus.com/bid/99587
Related Vulnerabilities
CVE-2018-1000632 Vulnerability in maven package dom4j:dom4j
CVE-2020-2233 Vulnerability in maven package org.jenkins-ci.plugins:pipeline-maven-parent
CVE-2022-2596 Vulnerability in maven package org.webjars.npm:node-fetch
CVE-2020-7749 Vulnerability in npm package osm-static-maps
CVE-2019-16772 Vulnerability in maven package org.webjars.npm:serialize-to-js