1 matches found
shiro: Cookie padding oracle vulnerability with default configuration
Apache Shiro before 1.4.2, when using the default "remember me" configuration, cookies could be susceptible to a padding attack...