Apache OpenMeetings version 1.0.0 handles user passwords in an insecure manner.
60e6d3ec3efb88c77b2ea7435546183db3b87cdf8ba86b197bd1c15707ddb3a7
Severity: Low
Vendor: The Apache Software Foundation
Versions Affected: Apache OpenMeetings 1.0.0
Description: Apache OpenMeetings updates user password in insecure manner.
CVE-2017-7688
The issue was fixed in 3.3.0
All users are recommended to upgrade to Apache OpenMeetings 3.3.0
Credit: This issue was identified by Security Innovation