CRITICAL
acymailing.com
CVE published 2026-07-09
CVE-2026-56292
A SQL injection vulnerability was discovered in the AcyMailing component for Joomla, version < 10.11.1. This vulnerability has been assigned a CVSS score of 9.2, indicating critical severity. The flaw allows attackers to access and leak database information without proper authorization. The vulnerability exists due to inadequate input validation and sanitization in the AcyMailing component, allowing attac [truncated]