Browse all 3 CVE security advisories affecting debaat. AI-powered Chinese analysis, POCs, and references for each vulnerability.
DeBAAT is an enterprise resource planning (ERP) system primarily used for business process automation and data management. Historically, it has been susceptible to multiple vulnerability classes, including remote code execution (RCE), cross-site scripting (XSS), and privilege escalation, with three CVEs currently documented. The platform's complex architecture and extensive integration points have contributed to these security issues. While no major public incidents have been widely reported, the presence of multiple CVEs indicates ongoing security challenges that require regular patching and careful configuration to mitigate potential risks.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-58870 | WordPress WP-GraphViz Plugin <= 1.5.1 - Cross Site Scripting (XSS) Vulnerability — WP-GraphVizCWE-79 | 6.5 | Medium | 2025-09-05 |
| CVE-2025-0865 | WP Media Category Management 2.0 - 2.3.3 - Cross-Site Request Forgery to Settings Update — WP Media Category ManagementCWE-352 | 6.5 | Medium | 2025-02-19 |
| CVE-2024-32950 | WordPress WP Media Category Management plugin <= 2.2 - Cross Site Scripting (XSS) vulnerability — WP Media Category ManagementCWE-79 | 7.1 | High | 2024-04-24 |
This page lists every published CVE security advisory associated with debaat. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.