[jira] [Commented] (SHIRO-782) Bypass shiroFilter ACL

Brian Demers (Jira) Fri, 19 Jun 2020 07:57:18 -0700


    [ 
https://issues.apache.org/jira/browse/SHIRO-782?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17140611#comment-17140611
 ]


Brian Demers commented on SHIRO-782:
------------------------------------

Thank you for keeping the details private to allow for responsible disclosure.  
Please don't open a bug report, as the issue needs to be confirmed first.

> Bypass shiroFilter ACL
> ----------------------
>
>                 Key: SHIRO-782
>                 URL: https://issues.apache.org/jira/browse/SHIRO-782
>             Project: Shiro
>          Issue Type: Bug
>          Components: Authorization (access control) 
>    Affects Versions: 1.5.3
>            Reporter: 淚笑
>            Priority: Major
>
> I found a way to bypass shiroFilter's access control,I have emailed details 
> of the vulnerability to [email protected],my email address is 
> [email protected]



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Commented] (SHIRO-782) Bypass shiroFilter ACL

Reply via email to