Lucene search
PRIOn knowledge basePRION:CVE-2015-8009HistoryJul 25, 2017 - 2:29 p.m.
Authorization
2017-07-2514:29:00
PRIOn knowledge base
www.prio-n.com
4
The MWOAuthDataStore::lookup_token function in Extension:OAuth for MediaWiki 1.25.x before 1.25.3, 1.24.x before 1.24.4, and before 1.23.11 does not properly validate the signature when checking the authorization signature, which allows remote registered Consumers to use another Consumer’s credentials by leveraging knowledge of the credentials.
Related
nvd
nvd
CVE-2015-8009
2017-07-25 14:29:00
cve
cve
CVE-2015-8009
2017-07-25 14:29:00
cvelist
cvelist
CVE-2015-8009
2017-07-25 14:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: mediawiki-1.25.3-1.fc22
2015-11-05 23:27:59
[SECURITY] Fedora 23 Update: mediawiki-1.25.3-1.fc23
2015-11-05 22:26:54
[SECURITY] Fedora 21 Update: mediawiki-1.24.4-1.fc21
2015-11-05 21:50:58
nessus
nessus
Fedora 23 : mediawiki-1.25.3-1.fc23 (2015-ec6d598d3d)
2016-03-04 00:00:00
Fedora 22 : mediawiki-1.25.3-1.fc22 (2015-24fe8b66c9)
2016-03-04 00:00:00
Fedora 21 : mediawiki-1.24.4-1.fc21 (2015-97fe05f788)
2016-03-04 00:00:00
freebsd
freebsd
mediawiki -- multiple vulnerabilities
2015-10-16 00:00:00
openvas
openvas
Fedora Update for mediawiki FEDORA-2015-97
2015-11-06 00:00:00
Fedora Update for mediawiki FEDORA-2015-24
2015-11-06 00:00:00