2020-06-22 18:06:37
apache
PUBLISHED
Apache Shiro before 1.5.3, when using Apache Shiro with Spring dynamic controllers, a specially crafted request may cause an authentication bypass.