2020-03-25 15:24:27
apache
PUBLISHED
Apache Shiro before 1.5.2, when using Apache Shiro with Spring dynamic controllers, a specially crafted request may cause an authentication bypass.