What is CVE-2025-24635?

A high-severity reflected Cross-site Scripting (XSS) vulnerability exists in the Paytm Payment Donation plugin. This flaw affects versions up to 2.3.1. Immediate action is needed to safeguard against potential exploitation.

What is the severity of CVE-2025-24635?

CVE-2025-24635 has a severity rating of HIGH with a CVSS base score of 7.1.

CVE-2025-24635 | UNKNOWN

CVE-2025-24635 is a high-severity vulnerability classified as an improper neutralization of input during web page generation, specifically a reflected Cross-site Scripting (XSS) issue. This vulnerability allows attackers to inject malicious scripts into web pages viewed by other users. It affects the Paytm Payment Donation plugin, particularly versions from n/a through 2.3.1.

The vulnerability has been assigned a CVSS score of 7.1, indicating a high severity, which necessitates urgent attention from organizations using this plugin. The attack vector is network-based, with low complexity, requiring no privileges to exploit but necessitating user interaction. The potential impact on confidentiality, integrity, and availability is assessed as low.

Given the nature of this vulnerability, the risk to organizations includes the potential for unauthorized access to user accounts and the ability to manipulate user sessions. Organizations should prioritize patching immediately to mitigate the exposure associated with this vulnerability.

Currently, there are no known exploits available for this vulnerability, and it has not been included in the Known Exploited Vulnerabilities (KEV) catalog. Nonetheless, the potential for exploitation remains significant, and organizations must remain vigilant.

Vulnerability Details

The official CVE description states that this vulnerability allows for reflected XSS in the Paytm Payment Donation plugin. It has a CVSS 3.1 score of 7.1, indicating a high severity level. The affected product is the Paytm Payment Donation plugin, specifically versions up to 2.3.1. The vulnerability is classified under CWE-79 (Improper Neutralization of Input During Web Page Generation).

Technical Analysis

The root cause of this vulnerability lies in the inadequate sanitization of user input when generating web pages. Attackers may leverage this flaw by crafting malicious URLs that, when visited, execute JavaScript code in the context of the user’s session. The attack vector is primarily network-based, and the complexity of the attack is low, requiring no special privileges but necessitating user interaction to be successful.

In terms of impacts, the confidentiality, integrity, and availability of the system are all potentially affected, albeit at a low level. Organizations must be aware that even low-impact vulnerabilities can lead to significant security incidents if not addressed promptly.

Risk & Impact Analysis

The real-world risk associated with CVE-2025-24635 includes the potential for attackers to inject scripts that could steal sensitive information or manipulate user sessions. This vulnerability has a significant blast radius, especially for organizations that heavily rely on the affected plugin for processing donations. Organizations should address this vulnerability in their priority patch cycle to mitigate risks.

Exploitation Status

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	No
Ransomware Use	No

Affected Versions

The affected versions for this vulnerability include all versions of the Paytm Payment Donation plugin prior to 2.3.1. Organizations using this plugin should verify their current version and apply necessary updates.

Mitigation & Remediation

To mitigate this vulnerability, organizations should update the Paytm Payment Donation plugin to version 2.3.2 or later. If immediate patching is not possible, consider implementing input validation and output encoding measures to reduce the risk of XSS. Additional configuration hardening and network security controls can help limit exposure.

Detection Guidance

Organizations should monitor application logs for unusual user interactions and script injections. Behavioral anomalies may indicate attempts to exploit this vulnerability. Network signatures for known XSS patterns can also aid in detecting potential exploitation.

AppSecure Threat Intelligence Insight

The long-term significance of CVE-2025-24635 is heightened by the ongoing trend of increasing XSS vulnerabilities within web applications. Security teams must prioritize proactive measures to prevent such vulnerabilities by incorporating security into the development lifecycle.

To ensure effective application security, organizations can benefit from implementing a comprehensive penetration testing program. This will help identify and address similar vulnerabilities.

Additionally, organizations should stay informed about emerging threats and trends in application security through regular reviews of security metrics and assessments.

For further reading, organizations can explore resources on penetration testing methodology and best practices in application security.

Organizations should also consider engaging with security experts to enhance their understanding of the application security landscape.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2025-24635: High Vulnerability in Paytm Payment Donation