{"schema_version": "1.6.1", "id": "CVE-2023-46750", "summary": "URL Redirection to Untrusted Site ('Open Redirect') vulnerability in FORM authentication feature Apache Shiro.", "details": "URL Redirection to Untrusted Site ('Open Redirect') vulnerability when \"form\" authentication is used in Apache Shiro.\nMitigation: Update to Apache Shiro 1.13.0+ or 2.0.0-alpha-4+.\n", "affected": [{"ranges": [{"type": "SEMVER", "events": [{"introduced": "0"}, {"fixed": "1.13.0"}]}, {"type": "SEMVER", "events": [{"introduced": "2.0.0-alpha-1"}, {"fixed": "2.0.0-alpha-4"}]}]}], "references": [{"type": "WEB", "url": "https://lists.apache.org/thread/hoc9zdyzmmrfj1zhctsvvtx844tcq6w9"}]}