Session Fixation

Overview org.apache.shiro:shiro-web is a powerful and easy-to-use Java security framework that performs authentication, authorization, cryptography, and session management. Affected versions of this package are vulnerable to Session Fixation during the login operation in DefaultSecurityManager.ja...

Sensitive Cookie in HTTPS Session Without "Secure" Attribute

Overview org.apache.shiro:shiro-web is a powerful and easy-to-use Java security framework that performs authentication, authorization, cryptography, and session management. Affected versions of this package are vulnerable to Sensitive Cookie in HTTPS Session Without "Secure" Attribute in the form...

cloud.opencode.base:opencode-base-token (=1.0.0), io.github.junxworks:junx-ep-auth (>=2.0.0 <=2.1.0) +11 more potentially affected by CVE-2023-46750 via org.apache.shiro:shiro-web (>=2.0.0-alpha-1 <=2.0.0-alpha-3)

org.apache.shiro:shiro-web MAVEN version =2.0.0-alpha-1, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0, =2.0.0-alpha-1, =2.0.0-alpha-1, =2.0.0-alpha-1, =2.0.0-alpha-1, =2.0.0-alpha-1, =2.0.0-alpha-1, =2.0.0-alpha-1, =2.0.0-alpha-3 Source cves: CVE-2023-46750 Source advisory: OSV:GHSA-HHW5-C326-822H...

ca.ibodrov.concord:testcontainers-concord-core (>=2.0.0 <=2.0.2), ca.ibodrov.mica:mica-concord-server-plugin (>=0.0.2 <=0.0.21) +273 more potentially affected by CVE-2023-46750 via org.apache.shiro:shiro-web (>=1.0.0-incubating <=1.12.0)

org.apache.shiro:shiro-web MAVEN version =1.0.0-incubating, =2.0.0, =0.0.2, =2.2.0, =2.2.0, =2.2.0, =2.8.0, =2.8.0, =2.8.0, =2.8.0, =3.0.0, =2.8.0, =5.0, =5.0, =5.5.2 and more Source cves: CVE-2023-46750 Source advisory: OSV:GHSA-HHW5-C326-822H...

ca.ibodrov.concord:testcontainers-concord-core (>=2.0.0 <=2.0.2), ca.ibodrov.mica:mica-concord-server-plugin (>=0.0.2 <=0.0.21) +257 more potentially affected by CVE-2023-34478 via org.apache.shiro:shiro-web (>=1.0.0-incubating <=1.11.0)

org.apache.shiro:shiro-web MAVEN version =1.0.0-incubating, =2.0.0, =0.0.2, =2.2.0, =2.2.0, =2.2.0, =2.8.0, =2.8.0, =2.8.0, =2.8.0, =3.0.0, =2.8.0, =5.0, =5.0, =5.5 and more Source cves: CVE-2023-34478 Source advisory: OSV:GHSA-PMHC-2G4F-85CG...

Exploit for CVE-2020-13933

CVE-2020-13933 靶场 shiro 权限配置， 当请求 /res/ 资源时， 302 跳转到登陆页面进行身份认证 - NameController.java： · /res/name： 请求名为 name 的的资源（触发身份认证） · /res/： 不请求任何资源（不触发身份认证） 靶场验证 不在请求路由中指定资源名称时，不触发身份验证，也无资源返回： http://127.0.0.1:8080/res/ 在请求路由中指定资源名称时，302 跳转到身份验证页面： http://127.0.0.1:8080/res/poc 构造特定 PoC...

org.apache.camel:camel-shiro (=2.5.0), org.apache.shiro.samples:samples-aspectj (=1.0.0-incubating) +29 more potentially affected by CVE-2022-40664 via org.apache.shiro:shiro-core (=1.0.0-incubating)

org.apache.shiro:shiro-core MAVEN version =1.0.0-incubating is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.shiro:shiro-core and may be impacted: - org.apache.camel:camel-shiro =2.5.0 - org.apache.shiro.samples:samples-aspectj...

br.com.caelum.vraptor:vraptor-shiro (>=4.0.0-RC2 <=4.0.0-beta-1), ca.ibodrov.concord:repository-browser-plugin (>=1.0.0 <=1.0.1) +814 more potentially affected by CVE-2016-6802 via org.apache.shiro:shiro-web (>=1.0.0-incubating <=1.3.1)

org.apache.shiro:shiro-web MAVEN version =1.0.0-incubating, =4.0.0-RC2, =1.0.0, =2.0.0, =0.0.2, =0.1, =0.1, =0.1, =2.1.0-RELEASE, =1.0, =1.0.3 - cn.org.awcp:awcp-formdesigner-applicationImpl =1.0-RELEASE - cn.org.awcp:awcp-metadesigner-applicationImpl =1.0-RELEASE -...

br.com.caelum.vraptor:vraptor-shiro (>=4.0.0-RC2 <=4.0.0-beta-1), br.eti.arthurgregorio:shiro-ee (>=1.0.0 <=1.5.1) +1728 more potentially affected by CVE-2020-17523 via org.apache.shiro:shiro-web (>=1.0.0-incubating <=1.7.0)

org.apache.shiro:shiro-web MAVEN version =1.0.0-incubating, =4.0.0-RC2, =1.0.0, =1.0.0, =0.0.2, =0.0.21, =0.0.2, =0.0.1, =1.0.0, =1.0.0, =0.1, =0.1, =0.1, =0.2 and more Source cves: CVE-2020-17523 Source advisory: OSV:GHSA-V98J-7CRC-WVRJ...

Authentication Bypass

shiro-web is vulnerable to authentication bypass. An ArrayIndexOutOfBoundsException in Base64decode causes an invalid session cookie to be parsed as valid...

Authentication Bypass

Apache Shiro-web is vulnerable to authentication bypass. Lack of proper handling of servletPath parameter in the request allows an attacker to inject malicious string via the request parameter and bypass authentication...

Information Disclosure

shiro-web is vulnerable to information disclosure. The vulnerability exists as a user can use requestURI + "/" to bypass the chain filter protection and access resources that are otherwise restricted...