pkg:Maven/org.apache.shiro:shiro-core

10 total CVEsCRITICAL6HIGH2MEDIUM1LOW1

✅ Check your installed version

All known vulnerabilities

  • CRITICAL9.8CVE-2016-4437⚠ KEVImproper Access Control in Apache Shiro
    from 0, < 1.2.5
  • CRITICAL9.8CVE-2022-40664Apache Shiro Authentication Bypass vulnerability
    from 0, < 1.10.0
  • CRITICAL9.8CVE-2022-32532Improper Authorization in Apache Shiro
    from 0, < 1.9.1
  • CRITICAL9.8CVE-2021-41303Apache Shiro vulnerable to a specially crafted HTTP request causing an authentication bypass
    from 0, < 1.8.0
  • CRITICAL9.8CVE-2020-1957shiro - security update
    from 0, < 1.5.2
  • CRITICAL9.8CVE-2020-11989shiro - security update
    from 0, < 1.5.3
  • HIGH7.5CVE-2020-13933shiro - security update
    from 0, < 1.6.0
  • HIGH7.5CVE-2019-12422Improper input validation in Apache Shiro
    from 0, < 1.4.2
  • MEDIUM6.5CVE-2023-46749Apache Shiro vulnerable to path traversal
    from 0, < 1.13.0
  • LOW2.5CVE-2026-23901Apache Shiro Affected by an Observable Timing Discrepancy Vulnerability
    from 0, < 2.1.0