Browse all 9 CVE security advisories affecting erudika. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Erudika is an open-source platform providing enterprise-grade data management and workflow automation capabilities. Historically, vulnerabilities have included cross-site scripting (XSS), remote code execution (RCE), and privilege escalation flaws, often stemming from improper input validation and access control weaknesses. The platform's Java-based architecture has been susceptible to deserialization attacks and insecure default configurations. While no major public security incidents have been documented, the presence of eight CVEs indicates consistent security challenges requiring ongoing vigilance. Organizations implementing Erudika should prioritize hardening configurations, applying patches promptly, and implementing additional security controls to mitigate identified risks.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-49009 | Para Inserts Sensitive Information into Log File for Facebook authentication — paraCWE-532 | 6.2 | Medium | 2025-06-05 |
| CVE-2025-48955 | Para Server Logs Sensitive Information — paraCWE-532 | 6.2 | Medium | 2025-06-02 |
This page lists every published CVE security advisory associated with erudika. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.