Max CVSS | 7.5 | Min CVSS | 5.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2019-12422 | 5.0 |
Apache Shiro before 1.4.2, when using the default "remember me" configuration, cookies could be susceptible to a padding attack.
|
28-02-2023 - 16:17 | 18-11-2019 - 23:15 | |
CVE-2020-11989 | 7.5 |
Apache Shiro before 1.5.3, when using Apache Shiro with Spring dynamic controllers, a specially crafted request may cause an authentication bypass.
|
03-05-2022 - 13:59 | 22-06-2020 - 19:15 | |
CVE-2020-1957 | 7.5 |
Apache Shiro before 1.5.2, when using Apache Shiro with Spring dynamic controllers, a specially crafted request may cause an authentication bypass.
|
31-03-2022 - 01:54 | 25-03-2020 - 16:15 |