Description Dolibarr ERP/CRM 4.0.4 stores passwords with the MD5 algorithm, which makes brute-force attacks easier. Remediation References CVE-2017-7888 Related Vulnerabilities Jboss EAP Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') Vulnerability (CVE-2019-20444) Dolibarr Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-17898) WordPress Plugin Duplicator-WordPress Migration Arbitrary File Download (1.3.26) WebLogic CVE-2020-14636 Vulnerability (CVE-2020-14636) MySQL CVE-2021-35642 Vulnerability (CVE-2021-35642) Severity Critical Classification CVE-2017-7888 CWE-326 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities