Max CVSS 7.5 Min CVSS 5.0 Total Count2
IDCVSSSummaryLast (major) updatePublished
CVE-2019-12422 5.0
Apache Shiro before 1.4.2, when using the default "remember me" configuration, cookies could be susceptible to a padding attack.
28-02-2023 - 16:17 18-11-2019 - 23:15
CVE-2020-11989 7.5
Apache Shiro before 1.5.3, when using Apache Shiro with Spring dynamic controllers, a specially crafted request may cause an authentication bypass.
03-05-2022 - 13:59 22-06-2020 - 19:15
CVE-2020-1957 7.5
Apache Shiro before 1.5.2, when using Apache Shiro with Spring dynamic controllers, a specially crafted request may cause an authentication bypass.
31-03-2022 - 01:54 25-03-2020 - 16:15
Back to Top Mark selected
Back to Top