4Analytics version 5.0.2 - Security release
Hello,
We're announcing the release of 4Analytics version 5.0.2. This is is a security release, compatible with Joomla 3 to 6 without compatibility plugin.
Emergency update is required for all 4Analytics installations.
It fixes 2 critical vulnerabilities in all prior versions of 4Analytics:
- [Critical] Stored XSS. A specially crafted unauthenticated request may result in website takeover under some circumstances (CVE-2026-57833)
- [low risk, high severity] Set Markdown to HTML conversion to safe mode, in the event AI analysis would mention an attacker URL (stored XSS) (CVE-2026-58077)
Please see this blog post for more details. This release is immediately available both from the download area and using the one-click Joomla! updater of your web site.
Best regards
Weeblr.com