CVE-2025-12539 | TNC Toolbox Plugin up to 1.4.2 on WordPress cPanel API save_settings information disclosure

Inserito da Angelo Barbosa | Nov 11, 2025 | CVE

A vulnerability was found in TNC Toolbox Plugin up to 1.4.2 on WordPress. It has been declared as problematic. Impacted is the function Tnc_Wp_Toolbox_Settings::save_settings of the component cPanel API Handler. Such manipulation leads to information disclosure.

This vulnerability is referenced as CVE-2025-12539. It is possible to launch the attack remotely. No exploit is available.

CVE-2025-12539 | TNC Toolbox Plugin up to 1.4.2 on WordPress cPanel API save_settings information disclosure

Post correlati

CVE-2024-8015 | Progress Telerik Reporting up to 10.2.24.806 externally-controlled input to select classes or code

CVE-2024-8429 | Digital Operation Services WiFiBurada up to 1.0.4 excessive authentication

CVE-2025-8143 | Soledad Plugin up to 8.6.7 on WordPress pcsml_smartlists_h cross site scripting

CVE-2025-5569 | IdeaCMS up to 1.7 getList.html Article/Goods Field sql injection (ICBVWE)