Even worse: Thousands of other sites are making the same facepalm-worthy mistake.
Tag: patreon
The inclusion of source code and databases suggest breach was extensive.
At least passwords were encrypted with 2048-bit RSA, hashed via bcrypt, and salted.