Unauthenticated Stored XSS Vulnerability in 4Analytics Joomla Extension
CVE-2026-58077

8.7HIGH

Key Information:

Vendor

Weeblr.com

Vendor
CVE Published:
15 July 2026

What is CVE-2026-58077?

The 4Analytics extension for Joomla is susceptible to an unauthenticated stored Cross-Site Scripting (XSS) vulnerability. Attackers can craft malicious requests that, when executed, compromise the site's security. This could potentially lead to unauthorized access or control over the affected Joomla site, exposing sensitive information and posing significant risks to website integrity.

Affected Version(s)

4Analytics extension for Joomla 1.0-5.0.1

References

CVSS V4

Score:
8.7
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Yannick Gaultier
.