MEDIUM

GHSA-wpqm-4gwx-w843

Apache Shiro Vulnerable to Open Redirect, Server-Side Request Forgery

상세

With valid login credentials, URL Redirection to Untrusted Site ('Open Redirect'), Server-Side Request Forgery (SSRF) vulnerability in Apache Shiro.

This issue affects Apache Shiro from 2.0-alpha to 2.1.0, and 3.0.0-alpha-1, only when using shiro-jakarta-ee integration module.

Users are recommended to upgrade to version 2.1.1, or 3.0.0-alpha-2 or later, which fixes the issue by encrypting the cookie.

After successful login, Jakarta EE integration module uses shiroSavedRequest cookie to redirect to a particular web page after login. This cookie was not validated, and can be forged to send a HTTP GET request from the server itself to an arbitrary URL from the cookie.

이 버전이 영향받나요?

사용 중인 패키지 버전을 입력하면 즉시 평가합니다.

영향 패키지

Maven / org.apache.shiro:shiro-jakarta-ee

최초 영향 버전: 2.0.0-alpha-0 수정 버전: 2.2.0

수정 # pom.xml: bump <version>2.2.0</version> for org.apache.shiro:shiro-jakarta-ee

Maven / org.apache.shiro:shiro-jakarta-ee

최초 영향 버전: 3.0.0-alpha-1 수정 버전: 3.0.0-alpha-2

수정 # pom.xml: bump <version>3.0.0-alpha-2</version> for org.apache.shiro:shiro-jakarta-ee

참고

https://nvd.nist.gov/vuln/detail/CVE-2026-44598 [ADVISORY]
https://github.com/apache/shiro [PACKAGE]
https://shiro.apache.org/security-reports.html#cve_2026_44598 [WEB]
http://www.openwall.com/lists/oss-security/2026/05/25/8 [WEB]