CVE-2024-37430 — Authentication Bypass by Spoofing in Wordpress

CWE-290 — Authentication Bypass by Spoofing3 documents3 sources

Severity

—N/A

No vector

EPSS

0.1%

top 81.77%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Patreon Wordpress

Timeline

PublishedJul 9

Description

Authentication Bypass by Spoofing vulnerability in patreon Patreon WordPress patreon-connect.This issue affects Patreon WordPress: from n/a through <= 1.9.0.

Affected Packages1 packages

▶CVEListV5patreon/patreon_wordpress1.9.0

🔴Vulnerability Details

CVEList

WordPress Patreon WordPress plugin <= 1.9.0 - Image Protection Bypass vulnerability↗2024-07-09

▶

GHSA

GHSA-p8vv-x9fq-f9hx: Authentication Bypass by Spoofing vulnerability in Patreon Patreon WordPress allows Functionality Misuse↗2024-07-09

▶