CVE-2024-7984 Information

Description

The Joy Of Text Lite WordPress plugin through 2.3.1 does not have CSRF check in place when updating its settings which could allow attackers to make a logged in admin change them via a CSRF attack

Reference

https://wpscan.com/vulnerability/07684ecb-5662-4412-8190-7957cfcf7bd3/