Does Landing Page Cat – Coming Soon & Maintenance Pages have any unpatched vulnerabilities?

No. All known vulnerabilities in Landing Page Cat – Coming Soon & Maintenance Pages have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Landing Page Cat – Coming Soon & Maintenance Pages compatible with WordPress 6.9.4?

According to WordPress.org data, Landing Page Cat – Coming Soon & Maintenance Pages 1.8.0 has been tested up to WordPress 6.9.4. Check the plugin's changelog for the latest compatibility information.

What is Landing Page Cat – Coming Soon & Maintenance Pages's security score?

Landing Page Cat – Coming Soon & Maintenance Pages has a WP-Safety security score of 96/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Landing Page Cat – Coming Soon & Maintenance Pages Security & Risk Analysis

wordpress.org/plugins/landing-page-cat

Landing Page Cat Lets You Publish A Beautiful Coming Soon Page, Maintenance Page or Squeeze Page For WordPress, In Just 2 Minutes.

700 active installs v1.8.0 PHP + WP 6.2+ Updated Jan 14, 2026

404-pagecoming-soonlanding-pagelanding-pagesmaintenance-page

A · Safe

CVEs total5

Unpatched0

Last CVEApr 14, 2025

Plugin page Download

Safety Verdict

Is Landing Page Cat – Coming Soon & Maintenance Pages Safe to Use in 2026?

Generally Safe

Score 96/100

Landing Page Cat – Coming Soon & Maintenance Pages has a strong security track record. Known vulnerabilities have been patched promptly.

5 known CVEsLast CVE: Apr 14, 2025Updated 2mo ago

Risk Assessment

The "landing-page-cat" plugin v1.8.0 exhibits a generally good security posture based on the static analysis, with a notable absence of dangerous functions and 100% of SQL queries utilizing prepared statements. The majority of output is properly escaped, and a significant number of nonce and capability checks are in place across its AJAX endpoints, suggesting a conscious effort to secure these entry points. The absence of directly exploitable critical or high-severity taint flows is also a positive sign. However, the plugin's history of 5 medium-severity CVEs, specifically related to Cross-site Scripting, Missing Authorization, and Information Exposure, is a significant concern. While none are currently unpatched, this pattern indicates a recurring vulnerability class that requires ongoing vigilance. The presence of two flows with unsanitized paths, though not classified as critical or high, warrants attention as potential avenues for unexpected behavior or vulnerabilities if inputs are not rigorously validated. The plugin's attack surface is solely composed of AJAX handlers, and while all currently have authorization checks, this remains the primary vector for potential exploitation.

Key Concerns

Recurring medium CVEs suggest ongoing security weaknesses
Two flows with unsanitized paths
Large number of external HTTP requests
Bundled library (Select2) - potential for outdated components

Vulnerabilities

Landing Page Cat – Coming Soon & Maintenance Pages Security Vulnerabilities

CVEs by Year

4 CVEs in 2024

2024

1 CVE in 2025

2025

Patched Has unpatched

Severity Breakdown

Medium

5 total CVEs

CVE-2025-26992medium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Landing Page Cat <= 1.7.8 - Reflected Cross-Site Scripting

Apr 14, 2025 Patched in 1.7.9 (8d)

CVE-2025-24576medium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Landing Page Cat – Coming Soon Page, Maintenance Page & Squeeze Pages <= 1.7.7 - Reflected Cross-Site Scripting

Dec 17, 2024 Patched in 1.7.8 (67d)

CVE-2024-9226medium · 6.1Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Landing Page Cat – Coming Soon Page, Maintenance Page & Squeeze Pages <= 1.7.6 - Reflected Cross-Site Scripting

Nov 8, 2024 Patched in 1.7.7 (1d)

CVE-2024-49686medium · 4.3Missing Authorization

Landing Page Cat <= 1.7.4 - Missing Authorization

Oct 21, 2024 Patched in 1.7.5 (10d)

CVE-2024-0708medium · 5.3Exposure of Sensitive Information to an Unauthorized Actor

Landing Page Cat – Coming Soon Page, Maintenance Page & Squeeze Pages <= 1.7.2 - Unauthenticated Information Exposure

Feb 14, 2024 Patched in 1.7.3 (167d)

Code Analysis

Analyzed Mar 16, 2026

Landing Page Cat – Coming Soon & Maintenance Pages Code Analysis

Dangerous Functions

Raw SQL Queries

9 prepared

Unescaped Output

364 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Select2

SQL Query Safety

100% prepared9 total queries

Output Escaping

96% escaped381 total outputs

Data Flows

2 unsanitized

Data Flow Analysis

10 flows2 with unsanitized paths

<mailchimp> (includes\providers\mailchimp.php:0)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Landing Page Cat – Coming Soon & Maintenance Pages Attack Surface

Entry Points11

Unprotected0

AJAX Handlers 11

authwp_ajax_fca_lpc_add_optinincludes\api.php:96

noprivwp_ajax_fca_lpc_add_optinincludes\api.php:97

authwp_ajax_fca_lpc_uninstallincludes\api.php:132

authwp_ajax_fca_lpc_get_activecampaign_listsincludes\providers\activecampaign.php:144

authwp_ajax_fca_lpc_get_aweber_listsincludes\providers\aweber.php:153

authwp_ajax_fca_lpc_get_campaignmonitor_listsincludes\providers\campaignmonitor.php:129

authwp_ajax_fca_lpc_get_convertkit_listsincludes\providers\convertkit.php:115

authwp_ajax_fca_lpc_get_drip_listsincludes\providers\drip.php:143

authwp_ajax_fca_lpc_get_getresponse_listsincludes\providers\getresponse.php:124

authwp_ajax_fca_lpc_get_mailchimp_listsincludes\providers\mailchimp.php:151

authwp_ajax_fca_lpc_get_mailchimp_groupsincludes\providers\mailchimp.php:207

WordPress Hooks 25

actioninitincludes\custom-post-type.php:60

filterpost_type_linkincludes\custom-post-type.php:69

filterpost_updated_messagesincludes\custom-post-type.php:116

filtermanage_edit-landingpage_columnsincludes\custom-post-type.php:129

actionmanage_landingpage_posts_custom_columnincludes\custom-post-type.php:148

filterscreen_options_show_screenincludes\custom-post-type.php:156

actionadmin_enqueue_scriptsincludes\editor\editor.php:58

actionadd_meta_boxes_landingpageincludes\editor\editor.php:162

actionedit_form_after_titleincludes\editor\editor.php:183

actionsave_post_landingpageincludes\editor\editor.php:954

filterredirect_post_locationincludes\editor\editor.php:1079

actionadd_meta_boxes_landingpageincludes\editor\sidebar.php:17

actionwp_print_stylesincludes\landing\landing.php:41

filterwp_title_partsincludes\landing\landing.php:116

filtertemplate_includeincludes\landing\landing.php:125

actionadmin_noticesincludes\notices.php:19

actionfca_lpc_schedule_review_noticeincludes\notices.php:136

filterwp_privacy_personal_data_exportersincludes\subscribers.php:179

filterwp_privacy_personal_data_erasersincludes\subscribers.php:237

actionfca_lpc_after_submissionincludes\subscribers.php:294

actionadmin_menuincludes\subscribers.php:306

actionplugins_loadedincludes\subscribers.php:420

actionadmin_menuincludes\upgrade.php:16

actionadmin_footerincludes\upgrade.php:46

actionadmin_enqueue_scriptslanding-page-cat.php:101

Scheduled Events 2

fca_lpc_schedule_review_notice

Maintenance & Trust

Landing Page Cat – Coming Soon & Maintenance Pages Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4

Last updatedJan 14, 2026

PHP min version

Downloads61K

Community Trust

Rating84/100

Number of ratings6

Active installs700

Alternatives

Landing Page Cat – Coming Soon & Maintenance Pages Alternatives

ONTRApages

ontrapages

ONTRApages for WordPress allows Ontraport Premium users to connect to their accounts and easily publish their landing pages on their own WordPress sit …

1K No CVEs

Landing Page Builder – Free Landing Page Templates

ultimate-landing-page

Landing Page Builder lets you create Custom Pages using pre designed Free Landing Page templates with Ultimate Landing Page Builder.

600 1 CVE

Catch Under Construction

catch-under-construction

100

This WordPress maintenance mode plugin helps you display informative under construction page in an elegant manner with easy customization

100 No CVEs

WEN Maintenance Mode

wen-maintenance-mode

100

The fastest & simplest maintenance page for WordPress site. Super-easy to use!

90 No CVEs

LaunchRock

launchrock

Embed the LaunchRock sign-up form in your blog.

10 No CVEs

Developer Profile

Landing Page Cat – Coming Soon & Maintenance Pages Developer Profile

fatcatapps

13 plugins · 67K total installs

trust score

Avg Security Score

93/100

Avg Patch Time

242 days

View full developer profile

Detection Fingerprints

How We Detect Landing Page Cat – Coming Soon & Maintenance Pages

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/landing-page-cat/includes/tooltipster/tooltipster.bundle.min.css/wp-content/plugins/landing-page-cat/includes/tooltipster/tooltipster-borderless.min.css/wp-content/plugins/landing-page-cat/includes/tooltipster/tooltipster-fca-theme.min.css/wp-content/plugins/landing-page-cat/includes/select2/select2.min.css/wp-content/plugins/landing-page-cat/includes/editor/editor.js/wp-content/plugins/landing-page-cat/includes/editor/editor.min.css/wp-content/plugins/landing-page-cat/includes/datetimepicker/jquery.datetimepicker.min.css/wp-content/plugins/landing-page-cat/includes/deactivation.min.js

Script Paths

/wp-content/plugins/landing-page-cat/includes/tooltipster/tooltipster.bundle.min.js/wp-content/plugins/landing-page-cat/includes/select2/select2.min.js/wp-content/plugins/landing-page-cat/includes/editor/editor.js/wp-content/plugins/landing-page-cat/includes/datetimepicker/jquery.datetimepicker.full.min.js/wp-content/plugins/landing-page-cat/includes/deactivation.min.js

Version Parameters

landing-page-cat/includes/tooltipster/tooltipster.bundle.min.css?ver=landing-page-cat/includes/tooltipster/tooltipster-borderless.min.css?ver=landing-page-cat/includes/tooltipster/tooltipster-fca-theme.min.css?ver=landing-page-cat/includes/select2/select2.min.css?ver=landing-page-cat/includes/editor/editor.js?ver=landing-page-cat/includes/editor/editor.min.css?ver=landing-page-cat/includes/datetimepicker/jquery.datetimepicker.min.css?ver=landing-page-cat/includes/deactivation.min.js?ver=

HTML / DOM Fingerprints

CSS Classes

fca-deactivatefca-lpc-deactivate-textareafca-deactivate-navfca-lpc-deactivate-skipfca-lpc-deactivate-send

HTML Comments

+5 more

Data Attributes

id="fca-deactivate"id="fca-lpc-deactivate-textarea"id="fca-deactivate-nav"id="fca-lpc-deactivate-skip"id="fca-lpc-deactivate-send"

JS Globals

fca_lpcfcaLpcData

FAQ