A vulnerability marked as critical has been reported in AcyMailing Newsletter AcyMailing SMTP Newsletter Plugin up to 10.11.0 on WordPress. The impacted element is an unknown function. The manipulation leads to sql injection.
This vulnerability is documented as CVE-2026-57739. The attack can be initiated remotely. There is not any exploit available.