0x00 vulnerability Profile
https://www.openwall.com/lists/oss-security/2020/03/23/2
0x01 Vulnerability Analysis
Checked the official commit, in the commit https://github.com/apache/shiro/commit/9762f97926ba99ac0d958e088cae3be8b657948d find relevant information
Generally understood as the Spring web on match url will be fault-tolerant redundant back /, and shiro not match the lead bypassed pull request submitted by the people tomsun28
0x02 vulnerabilities environment to build
LoginController configure the following code for returning a message that requires authentication
1 @GetMapping("/test/secret") 2 public String secret(){ 3 return "secret"; 4 }
Direct access / test / secret, jump to the login page
Access / test / secret /, returned secret
Such a problem does not exist
I limited technology, if further understanding wrong with hope