Case Study: Sendy (self-hosted email newsletter app) achieves stronger application security with Acunetix

Acunetix helps popular email newsletter application Sendy tighten its security

Sendy is a self‑hosted email newsletter application that sends trackable bulk mail via Amazon SES; because it is user‑hosted and largely open source, security flaws could expose subscriber data and damage customer trust. To address this, Sendy engaged Acunetix and used Acunetix’s AcuSensor technology to scan its source code and identify vulnerabilities.

Acunetix’s AcuSensor combined black‑box scanning with in‑code sensors to pinpoint multiple SQL injection and cross‑site scripting (XSS) flaws, including the exact SQL queries and lines of code causing the issues, with no false positives. As a result, Sendy was able to remediate the vulnerabilities, significantly reducing the risk of a breach and speeding up fixes; Acunetix’s findings are now incorporated into Sendy’s patched releases, and users are advised to update.

Sendy

Ben Ho

Developer