GCVE - cpe:2.3:a:acymailing:acymailing:*:*:*:*:enterprise:joomla\!:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:acymailing:acymailing:*:*:*:*:enterprise:joomla\!:*:*

part: a version: * update: *

Vendor	Acymailing (`e793a6e6-12d0-5a45-ac63-062287209ca7`)
Product	Acymailing (`c7c89958-c94f-5b95-ae80-2f5fb5fada2c`)
Edition	*
Language	*
Software edition	enterprise
Target software	joomla!
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2023-39974`	vulnerable	2026-06-03 14:52:39.615507	Extension - acymailing.com - Exposure of Sensitive Information in AcyMailing Enterprise component for Joomla 6.7.0-8.6.3 Exposure of Sensitive Information vulnerability in AcyMailing Enterprise component for Joomla. It allows unauthorized actors to get the number of subscribers in a specific list. Published: 2023-08-17T20:06:39.321Z Updated: 2024-10-20T04:33:25.578Z Open on db.gcve.eu Reference links https://extensions.joomla.org/extension/acymailing-starter/ https://www.acymailing.com/acymailing-release-security-%F0%9F%94%90-news-updates/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-39973`	vulnerable	2026-06-03 14:52:39.614997	Extension - acymailing.com - Improper Access Control in AcyMailing Enterprise component for Joomla 6.7.0-8.6.3 Improper Access Control vulnerability in AcyMailing Enterprise component for Joomla. It allows the unauthorized removal of attachments from campaigns. Published: 2023-08-17T20:06:35.442Z Updated: 2024-10-20T04:33:20.343Z Open on db.gcve.eu Reference links https://extensions.joomla.org/extension/acymailing-starter/ https://www.acymailing.com/acymailing-release-security-%F0%9F%94%90-news-updates/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-39972`	vulnerable	2026-06-03 14:52:39.614638	Extension - acymailing.com - Improper Access Control in AcyMailing Enterprise component for Joomla 6.7.0-8.6.3 Improper Access Control vulnerability in AcyMailing Enterprise component for Joomla. It allows unauthorized users to create new mailing lists. Published: 2023-08-17T20:06:39.150Z Updated: 2024-10-20T04:33:20.711Z Open on db.gcve.eu Reference links https://extensions.joomla.org/extension/acymailing-starter/ https://www.acymailing.com/acymailing-release-security-%F0%9F%94%90-news-updates/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-39971`	vulnerable	2026-06-03 14:52:39.614208	Extension - acymailing.com - XSS in AcyMailing Enterprise component for Joomla 6.7.0-8.6.3 Improper Neutralization of Input During Web Page Generation vulnerability in AcyMailing Enterprise component for Joomla allows XSS. This issue affects AcyMailing Enterprise component for Joomla: 6.7.0-8.6.3. Published: 2023-08-17T20:06:40.974Z Updated: 2024-10-20T04:33:27.361Z Open on db.gcve.eu Reference links https://extensions.joomla.org/extension/acymailing-starter/ https://www.acymailing.com/acymailing-release-security-%F0%9F%94%90-news-updates/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Acymailing

PURL mappings

Vulnerability references

Contribute