CVE-2023-3237

Name of the Vulnerable Software and Affected Versions OTCMS versions up to 6.62

Description A critical issue was discovered, affecting unknown code. The manipulation of the username and password arguments with the input admin leads to the use of a hard-coded password.

Recommendations For OTCMS versions up to 6.62, update to a version that fixes this issue to prevent exploitation. As a temporary workaround, consider restricting access to the login functionality until a patch is available. Avoid using the default admin credentials in the affected username and password fields until the issue is resolved.