Description
Apache Shiro before 1.3.2 allows attackers to bypass intended servlet filters and gain access by leveraging use of a non-root servlet context path.
Remediation
References
http://www.securityfocus.com/bid/92947
http://packetstormsecurity.com/files/138709/Apache-Shiro-Filter-Bypass.html
http://www.securityfocus.com/archive/1/539397/100/0/threaded
Related Vulnerabilities
CVE-2022-41927 Vulnerability in maven package org.xwiki.platform:xwiki-platform-tag-ui
CVE-2013-7380 Vulnerability in npm package ep_imageconvert
CVE-2020-14340 Vulnerability in maven package org.jboss.xnio:xnio-api
CVE-2018-16490 Vulnerability in npm package mpath
CVE-2020-2303 Vulnerability in maven package org.jenkins-ci.plugins:active-directory