Joy Of Text Lite – SMS messaging for WordPress., CVE-2024-7984
- CVE, Research URL
- Published on
- May 16, 2025
- Research Description
- The Joy Of Text Lite WordPress plugin through 2.3.1 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack
- Affected versions
-
Min -, max 2.3.1.
- Status
-
vulnerable