Patreon Patreon_wordpress

8 CVEs affecting Patreon Patreon_wordpress. Latest disclosed: 2023-11-18. Critical: 3, High: 2.

Top CVEs affecting Patreon Patreon_wordpress
CVESeverityScorePublishedSummary
CVE-2018-20984Critical9.82019-08-22The patreon-connect plugin before 1.2.2 for WordPress has Object Injection.
CVE-2021-24229Critical9.62021-04-12The Jetpack Scan team identified a Reflected Cross-Site Scripting via the patreon_save_attachment_patreon_level AJAX action of the Patreon WordPress plugin bef…
CVE-2021-24228Critical9.62021-04-12The Jetpack Scan team identified a Reflected Cross-Site Scripting in the Login Form of the Patreon WordPress plugin before 1.7.2. The WordPress login form (wp-…
CVE-2021-24230High8.12021-04-12The Jetpack Scan team identified a Cross-Site Request Forgery vulnerability in the Patreon WordPress plugin before 1.7.0, allowing attackers to make a logged i…
CVE-2021-24227High7.52021-04-12The Jetpack Scan team identified a Local File Disclosure vulnerability in the Patreon WordPress plugin before 1.7.0 that could be abused by anyone visiting the…
CVE-2021-24231Medium6.52021-04-12The Jetpack Scan team identified a Cross-Site Request Forgery vulnerability in the Patreon WordPress plugin before 1.7.0, allowing attackers to make a logged a…
CVE-2021-25026Medium5.52022-03-14The Patreon WordPress plugin before 1.8.2 does not sanitise and escape the field "Custom Patreon Page name", which could allow high privilege users to perform…
CVE-2023-41129Medium4.32023-11-18Cross-Site Request Forgery (CSRF) vulnerability in Patreon Patreon WordPress.This issue affects Patreon WordPress: from n/a through 1.8.6.