2025-05-05 00:00:00
mitre
PUBLISHED
Incorrect access control in the component /user/list of Shiro-Action v0.6 allows attackers to access sensitive information via a crafted payload.