VYPR
High severity7.5NVD Advisory· Published Dec 29, 2017· Updated Jun 17, 2026

CVE-2015-8008

CVE-2015-8008

Description

The OAuth extension for MediaWiki improperly negotiates a new client token only over Special:OAuth/initiate, which allows attackers to bypass intended IP address access restrictions by making an API request with an existing token.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

7

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.