Description
Apache Shiro before 1.3.2 allows attackers to bypass intended servlet filters and gain access by leveraging use of a non-root servlet context path.
Remediation
References
http://packetstormsecurity.com/files/138709/Apache-Shiro-Filter-Bypass.html
http://www.securityfocus.com/archive/1/539397/100/0/threaded
http://www.securityfocus.com/bid/92947
Related Vulnerabilities
CVE-2020-5219 Vulnerability in maven package org.webjars.npm:angular-expressions
CVE-2022-25646 Vulnerability in npm package x-data-spreadsheet
CVE-2019-5475 Vulnerability in maven package org.sonatype.nexus.plugins:nexus-yum-repository-plugin
CVE-2014-0219 Vulnerability in maven package org.apache.karaf:org.apache.karaf.main
CVE-2020-26302 Vulnerability in maven package org.webjars.bowergithub.arasatasaygin:is.js