Primary

Context

Apache Shiro Jakarta EE Module Open Redirect Vulnerability via Unvalidated HTTP Referer Header

Vulnerability

Patched

A vulnerability in the Apache Shiro Jakarta EE module allows for open redirection attacks. The issue arises from the module's use of the HTTP Referer header to determine redirect targets after user login. In versions 2.0-alpha through 2.2.0 and 3.0.0-alpha-1, the module fails to properly validate this client-controlled header, enabling attackers to manipulate redirect destinations in affected applications.

Impact

Exploitation of this vulnerability could lead to open redirect attacks, where users are redirected to untrusted sites, potentially causing phishing or other malicious outcomes.

Remediation

Users can upgrade to Apache Shiro version 2.2.1 or 3.0.0-alpha-2 or later. These versions address the vulnerability by validating the Referer header and restricting redirects to relative paths within the current application context.

Added: May 26, 2026, 6:23 PM

Updated: May 26, 2026, 6:23 PM

Vulnerability Rating

Custom Algorithm

spread

4.2

impact

0.2

exploitability

4.2

remediation

7.7

relevance

9.4

threat

0.0

urgency

1.4

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.2

impact

0.2

exploitability

4.2

remediation

7.7

relevance

9.4

threat

0.0

urgency

1.4

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Apache Shiro Jakarta EE Module Open Redirect Vulnerability via Unvalidated HTTP Referer Header

Vulnerability

Impact

Remediation

Affected Products

Apache Shiro

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating