CVE-2023-39973

Description

Improper Access Control vulnerability in AcyMailing Enterprise component for Joomla. It allows the unauthorized removal of attachments from campaigns.

Affected products

• acymailing.com / AcyMailing Enterprise component for Joomla6.7.0-8.6.3 – 6.7.0-8.6.3

References

• MISChttps://extensions.joomla.org/extension/acymailing-starter/
• MISChttps://www.acymailing.com/acymailing-release-security-%F0%9F%94%90-news-updates/