CVE-2025-24576

CVSS 3.1 Score 7.1 of 10 (high)

Details

Published Feb 3, 2025

CWE ID 79

Summary

CVE-2025-24576 is a Cross-site Scripting (XSS) vulnerability affecting Fatcat Apps' Landing Page Cat, from version n/a through 1.7.7. Attackers can inject malicious scripts into the application during web page generation, exploiting this improper neutralization of input. Successful exploitation could lead to unauthorized access to user data or sessions, and further attacks on the affected organization or its users. It is recommended that users update to the latest version of Landing Page Cat to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/2umsCk
https://www.cve.org/CVERecord?id=CVE-2025-24576
https://nvd.nist.gov/vuln/detail/CVE-2025-24576

Back to Vulnerability Database

CVE-2025-24576

CVSS 3.1 Score 7.1 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations