CVE-2025-66108

CVSS 4.3 - MEDIUM

Description

Missing Authorization vulnerability in Merlot Digital (by TNC) TNC Toolbox: Web Performance tnc-toolbox allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects TNC Toolbox: Web Performance: from n/a through <= 2.0.4.

References

https://patchstack.com/database/Wordpress/Plugin/t...

Weakness Types

CWE-862

CVE Information

CVE ID:: CVE-2025-66108
Published:: 2025-11-21
Modified:: 2026-04-27
CVSS Score:: 4.3
Severity:: MEDIUM
Vector:: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Quick Actions

View on NVD

CVSS Severity Scale

0.0 - 3.9 LOW

4.0 - 6.9 MEDIUM

7.0 - 8.9 HIGH

9.0 - 10.0 CRITICAL