Lucene search
K

4 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-0376

Malicious code in bioql PyPI...

6.5CVSS6.8AI score0.01177EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/12/14 8:15 a.m.8 views

CVE-2023-46750 Apache Shiro: URL Redirection to Untrusted Site ('Open Redirect') vulnerability in FORM authentication feature Apache Shiro.

URL Redirection to Untrusted Site 'Open Redirect' vulnerability when "form" authentication is used in Apache Shiro. Mitigation: Update to Apache Shiro 1.13.0+ or 2.0.0-alpha-4+...

6.7AI score0.01496EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/10/12 12:0 a.m.2 views

PT-2022-25462 · Apache +1 · Apache Shiro +1

Name of the Vulnerable Software and Affected Versions: Apache Shiro versions prior to 1.10.0 Description: The issue is related to an authentication bypass vulnerability in Apache Shiro when forwarding or including via RequestDispatcher. Recommendations: For versions prior to 1.10.0, update to...

9.8CVSS9.4AI score0.0221EPSS
Exploits0References22
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/22 7:1 p.m.38 views

Security Bulletin: Apache Shiro (Publicly disclosed vulnerability) Affects IBM Partner Engagement Manager (CVE-2022-32532)

Summary IBM Sterling Partner Engagement Manager uses Apache Shiro library 1.9.1, where A RegexRequestMatcher can be misconfigured to be bypassed on some servlet containers. Applications using RegExPatternMatcher with . in the regular expression are possibly vulnerable to an authorization bypass...

9.8CVSS9.3AI score0.25431EPSS
Exploits0Affected Software1
Rows per page
Query Builder