Insecure Storage of User Passwords in Etherpad <1.8.3

Insecure Storage of User Passwords in Etherpad <1.8.3

CVE-2020-22783 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Etherpad <1.8.3 stored passwords used by users insecurely in the database and in log files. This affects every database backend supported by Etherpad.

Learn more about our User Device Pen Test.