CVE-2021-41303: Apache Shiro before 1.8.0, when using Apache Shiro w Spring Bootlists.apache.org3 pointsbased25 years ago