Comparison Overview

Duraplay

VS

Plantar

Duraplay

Avenida Santa Bárbara 21, Hidalgo del Parral, Chihuahua, 33870, MX
Last Update: 2025-05-05 (UTC)
Between 700 and 800
https://duraplayweb.com/

Good

En Duraplay nos sentimos orgullosos de ser la empresa líder en fabricación de tableros de madera en México. Nuestro compromiso en Duraplay es trabajar en una empresa responsable con el medio ambiente y nuestra comunidad, para cada día ofrecer un producto de mejor calidad y seguro para uso residencial, a la vez que cuidamos la sustentabilidad de la industria.

NAICS: 113
NAICS Definition: Forestry and Logging
Employees: 243
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Plantar

Avenida Raja Gabaglia, 1400 5 Andar Belo Horizonte, MG 30380-090, BR
Last Update: 2025-03-15 (UTC)

Good

Between 700 and 800
http://www.grupoplantar.com.br

Fundado em 1967, o Grupo Plantar mostrou-se capaz de expandir e inovar no setor florestal e de siderurgia a carvão vegetal. O nosso crescimento é baseado em investimentos voltados para a modernização de nossas atividades, com o desenvolvimento de novas tecnologias e constante aprimoramento profissional e pessoal de nossos colaboradores, tendo sempre como foco principal, a satisfação de nossos clientes. Nos orgulhamos de nossos investimentos que contribuem diretamente para o fomento e avanço das economias regionais das quais fazemos parte, com a geração de empregos, desenvolvimento de tecnologia, conhecimento, educação e bem estar social.

NAICS: 113
NAICS Definition:
Employees: 5,001-10,000
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/duraplay.jpeg
Duraplay
ISO 27001
Not verified
SOC 2
Not verified
GDPR
No public badge
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/plantar.jpeg
Plantar
ISO 27001
Not verified
SOC 2
Not verified
GDPR
No public badge
PCI DSS
No public badge
Compliance Summary
Duraplay
100%
Compliance Rate
0/4 Standards Verified
Plantar
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Forestry and Logging Industry Average (This Year)

No incidents recorded for Duraplay in 2025.

Incidents vs Forestry and Logging Industry Average (This Year)

No incidents recorded for Plantar in 2025.

Incident History — Duraplay (X = Date, Y = Severity)

Duraplay cyber incidents detection timeline including parent company and subsidiaries

Incident History — Plantar (X = Date, Y = Severity)

Plantar cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/duraplay.jpeg
Duraplay
Incidents

No Incident

https://images.rankiteo.com/companyimages/plantar.jpeg
Plantar
Incidents

No Incident

FAQ

Both Duraplay company and Plantar company demonstrate a comparable AI risk posture, with strong governance and monitoring frameworks in place.

Historically, Plantar company has disclosed a higher number of cyber incidents compared to Duraplay company.

In the current year, Plantar company and Duraplay company have not reported any cyber incidents.

Neither Plantar company nor Duraplay company has reported experiencing a ransomware attack publicly.

Neither Plantar company nor Duraplay company has reported experiencing a data breach publicly.

Neither Plantar company nor Duraplay company has reported experiencing targeted cyberattacks publicly.

Neither Duraplay company nor Plantar company has reported experiencing or disclosing vulnerabilities publicly.

Neither Duraplay company nor Plantar company has publicly disclosed detailed information about the number of their subsidiaries.

Duraplay company employs more people globally than Plantar company, reflecting its scale as a Forestry and Logging.

Latest Global CVEs (Not Company-Specific)

Description

Volto is a ReactJS-based frontend for the Plone Content Management System. Versions 16.34.0 and below, 17.0.0 through 17.22.1, 18.0.0 through 18.27.1, and 19.0.0-alpha.1 through 19.0.0-alpha.5, an anonymous user could cause the NodeJS server part of Volto to quit with an error when visiting a specific URL. This issue is fixed in versions 16.34.1, 17.22.2, 18.27.2 and 19.0.0-alpha.6.

Published
Date
2025-10-02
Updated
Date
2025-10-02
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Traccar is an open source GPS tracking system. Default installs of Traccar on Windows between versions 6.1- 6.8.1 and non default installs between versions 5.8 - 6.0 are vulnerable to unauthenticated local file inclusion attacks which can lead to leakage of passwords or any file on the file system including the Traccar configuration file. Versions 5.8 - 6.0 are only vulnerable if <entry key='web.override'>./override</entry> is set in the configuration file. Versions 6.1 - 6.8.1 are vulnerable by default as the web override is enabled by default. The vulnerable code is removed in version 6.9.0.

Published
Date
2025-10-02
Updated
Date
2025-10-02
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Stalwart is a mail and collaboration server. Versions 0.13.3 and below contain an unbounded memory allocation vulnerability in the IMAP protocol parser which allows remote attackers to exhaust server memory, potentially triggering the system's out-of-memory (OOM) killer and causing a denial of service. The CommandParser implementation enforces size limits on its dynamic buffer in most parsing states, but several state handlers omit these validation checks. This issue is fixed in version 0.13.4. A workaround for this issue is to implement rate limiting and connection monitoring at the network level, however this does not provide complete protection.

Published
Date
2025-10-02
Updated
Date
2025-10-02
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References
Description

WeGIA is an open source web manager with a focus on charitable institutions. Versions 3.4.12 and below contain a Broken Access Control vulnerability, identified in the get_relatorios_socios.php endpoint. This vulnerability allows unauthenticated attackers to directly access sensitive personal and financial information of members without requiring authentication or authorization. This issue is fixed in version 3.5.0.

Published
Date
2025-10-02
Updated
Date
2025-10-02
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

WeGIA is an open source web manager with a focus on charitable institutions. Versions 3.4.12 and below contain an Open Redirect vulnerability, identified in the control.php endpoint, specifically in the nextPage parameter (metodo=listarUmnomeClasse=FuncionarioControle). This vulnerability allows attackers to redirect users to arbitrary external domains, enabling phishing campaigns, malicious payload distribution, or user credential theft. This issue is fixed in version 3.5.0.

Published
Date
2025-10-02
Updated
Date
2025-10-02
Risk Information
cvss4
Base: 4.8
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References