PT-2024-1139 · Apache +2 · Apache Shiro +2
Name of the Vulnerable Software and Affected Versions: Apache Shiro versions 1.13.0 and earlier, or 2.0.0-alpha-4 and earlier Description: The issue is related to a path traversal attack that can result in an authentication bypass when used together with path rewriting. This can allow a remote...