org.apache.shiro:shiro-spring-boot-web-starter@1.6.0 vulnerabilities
-
latest version
2.0.0
-
latest non vulnerable version
-
first published
8 years ago
-
latest version published
3 months ago
-
licenses detected
- [1.4.0-RC2,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.apache.shiro:shiro-spring-boot-web-starter package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
org.apache.shiro:shiro-spring-boot-web-starter is a way to integrate Shiro into a Spring-base application Affected versions of this package are vulnerable to Authentication Bypass. When using Apache Shiro with Spring, a specially crafted HTTP request may cause an authentication bypass. How to fix Authentication Bypass? Upgrade |
[0,1.7.0)
|