Testing-related application pages were found within dotCMS. Test pages are usually implemented ad-hoc and often do not adhere to the security requirements/guidelines of the rest of the application, making them a potential security hazard. Recommendations include restricting access to only those with an actual need to access the page, or if applicable, removing the information from the production server.

Delete the testing pages:

./dotCMS/home/portal/test.jsp
./dotCMS/html/portlet/ext/workflows/schemes/test.jsp

• https://github.com/dotCMS/dotCMS/issues/3046