Vulnerabilities > Patreon > High

DATE CVE VULNERABILITY TITLE RISK
2023-11-18 CVE-2023-41129 Cross-Site Request Forgery (CSRF) vulnerability in Patreon Wordpress
Cross-Site Request Forgery (CSRF) vulnerability in Patreon Patreon WordPress.This issue affects Patreon WordPress: from n/a through 1.8.6.
network
low complexity
patreon CWE-352
8.8
2021-04-12 CVE-2021-24230 Cross-Site Request Forgery (CSRF) vulnerability in Patreon Wordpress
The Jetpack Scan team identified a Cross-Site Request Forgery vulnerability in the Patreon WordPress plugin before 1.7.0, allowing attackers to make a logged in user overwrite or create arbitrary user metadata on the victim’s account once visited.
network
low complexity
patreon CWE-352
8.1
2021-04-12 CVE-2021-24227 Information Exposure vulnerability in Patreon Wordpress
The Jetpack Scan team identified a Local File Disclosure vulnerability in the Patreon WordPress plugin before 1.7.0 that could be abused by anyone visiting the site.
network
low complexity
patreon CWE-200
7.5