SQL Injection in Acymailing.com Acymailing Extension For Joomla
CVE-2026-56292
A SQLi vulnerability in AcyMailing component < 10.11.1 for Joomla was discovered. Exploiting this flaw can lead to unauthorized database access and data leakage.
Vulnerability class: SQL Injection
Affected products
- Acymailing.com Acymailing Extension For Joomla — versions 1.0-10.11.0
Weakness classification (CWE)
References
- security@joomla.org (product)
- security@joomla.org (third-party-advisory)