CVE-2016-6802

CVE-2016-6802

EPSS 9.7%

Apache Shiro before 1.3.2 allows attackers to bypass intended servlet filters and gain access by leveraging use of a non-root servlet context path.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://packetstormsecurity.com/files/138709/Apache-Shiro-Filter-Bypass.html http://www.securityfocus.com/archive/1/539397/100/0/threaded http://www.securityfocus.com/bid/92947