Sort:  

These issues are different than the one before, the last issue was a possibility of the node storing encrypted passwords if a node was down in the error file. This issue is encoded passwords being sent, android and website don't do this. So this is likely a developers version that was uploaded to track on their side.

Zappl is in beta and the ios app just came out there hasn't been much testing of the application. More than one of the apps in the community have had security issues as well so. This isn't just a Zappl issue other applications that have had security issues or patches.