Lucene search
ApacheCVELIST:CVE-2023-46750HistoryDec 14, 2023 - 8:15 a.m.
CVE-2023-46750 Apache Shiro: URL Redirection to Untrusted Site ('Open Redirect') vulnerability in FORM authentication feature Apache Shiro.
2023-12-1408:15:58
CWE-601
apache
www.cve.org
2
cve-2023-46750
apache shiro
url redirection
untrusted site
open redirect
form authentication
mitigation
update.
URL Redirection to Untrusted Site (‘Open Redirect’) vulnerability when “form” authentication is used in Apache Shiro.
Mitigation: Update to Apache Shiro 1.13.0+ or 2.0.0-alpha-4+.
CNA Affected
[
{
"collectionURL": "https://repo.maven.apache.org/maven2",
"defaultStatus": "unaffected",
"packageName": "org.apache.shiro:shiro-web",
"product": "Apache Shiro",
"vendor": "Apache Software Foundation",
"versions": [
{
"lessThan": "1.13.0",
"status": "affected",
"version": "0",
"versionType": "semver"
},
{
"lessThan": "2.0.0-alpha-4",
"status": "affected",
"version": "2.0.0-alpha-1",
"versionType": "semver"
}
]
}
]Related
cve
cve
CVE-2023-46750
2023-12-14 09:15:42
veracode
veracode
Open Redirect
2023-12-18 06:11:11
redhatcve
redhatcve
CVE-2023-46750
2023-12-14 07:31:20
osv
osv
Open redirect in Apache Shiro
2023-12-14 09:30:19
CVE-2023-46750
2023-12-14 09:15:42
github
github
Open redirect in Apache Shiro
2023-12-14 09:30:19
ubuntucve
ubuntucve
CVE-2023-46750
2023-12-14 00:00:00
prion
prion
Open redirect
2023-12-14 09:15:00
nvd
nvd
CVE-2023-46750
2023-12-14 09:15:42
debiancve
debiancve
CVE-2023-46750
2023-12-14 09:15:42
