CVE-2018-10723

Severity CVSS v4.0:
Pending analysis
Type:
CWE-798 Use of Hard-coded Credentials
Publication date:
05/05/2018
Last modified:
12/06/2018

Description

Directus 6.4.9 has a hardcoded admin password for the Admin account because of an INSERT statement in api/schema.sql.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:rangerstudio:directus:6.4.9:*:*:*:*:*:*:*