oss-sec mailing list archives
[CVE-2020-13933] Apache Shiro Authentication Bypass Vulnerability
From: Brian Demers <bdemers () apache org>
Date: Mon, 17 Aug 2020 13:22:32 -0400
Apache Shiro before 1.6.0, when using Apache Shiro, a specially crafted HTTP request may cause an authentication bypass.
Current thread:
- [CVE-2020-13933] Apache Shiro Authentication Bypass Vulnerability Brian Demers (Aug 17)