New vulnerability on the NVD: CVE-2015-8008

December 29, 2017

The OAuth extension for MediaWiki improperly negotiates a new client token only over Special:OAuth/initiate, which allows attackers to bypass intended IP address access restrictions by making an API request with an existing token.

Published at: December 30, 2017 at 03:29AM

Search This Blog

New York Fashion Week

New vulnerability on the NVD: CVE-2015-8008

Comments

Post a Comment

Popular posts from this blog

New story on InStyle: Prince Andrew's Friends Are Now Calling the Allegations Against Him a "Witch Hunt"

New story on InStyle: How Cannabis Company Lord Jones Was Born

New story on InStyle: Root Touch-Up Kits Are Selling Out Everywhere but This Ones Still in Stock