Directus · Directus · CVE-2018-10723
**Name of the Vulnerable Software and Affected Versions**
Directus version 6.4.9
**Description**
The issue arises from a hardcoded admin password for the Admin account due to an INSERT statement in `api/schema.sql`.
**Recommendations**
For Directus version 6.4.9, update the hardcoded admin password in the `api/schema.sql` file to a secure, unique password to prevent unauthorized access.