Vulnerabilities > CVE-2021-24231 - Unspecified vulnerability in Patreon Wordpress

047910
CVSS 6.5 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
patreon
NVD
Published: 2021-04-12
Updated: 2024-11-21

Summary

The Jetpack Scan team identified a Cross-Site Request Forgery vulnerability in the Patreon WordPress plugin before 1.7.0, allowing attackers to make a logged administrator disconnect the site from Patreon by visiting a specially crafted link.

Vulnerable Configurations

Part Description Count
Application
Patreon
55

References