CVE-2023-39973

Description

Improper Access Control vulnerability in AcyMailing Enterprise component for Joomla. It allows the unauthorized removal of attachments from campaigns.

Reserved 2023-08-07 | Published 2023-08-17 | Updated 2024-10-20 | Assigner Joomla

Problem types

CWE-284 Improper Access Control

Product status

Default status
unaffected

6.7.0-8.6.3
affected

Credits

Joomla Security Strike Team finder

References

extensions.joomla.org/extension/acymailing-starter/ product

www.acymailing.com/...ng-release-security-🔐-news-updates/ vendor-advisory

cve.org (CVE-2023-39973)

nvd.nist.gov (CVE-2023-39973)

Download JSON