Etherpad <1.8.3 stored passwords used by users insecurely in the database and in log files. This affects every database backend supported by Etherpad. Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-22783 Reference (s):
- https://github.com/ether/etherpad-lite/issues/3421
- https://github.com/ether/etherpad-lite/commit/53f126082a8b3d094e48b159f0f0bc8a5db4b2f4