DSF
Company Details
Linkedin ID:
_donate2
Website:
Employees number:
None employees
Number of followers:
172
NAICS:
561499
Industry Type:
Homepage:
donate2.com
IP Addresses:
0
Company ID:
DON_7529477
Scan Status:
In-progress
Donate2 | Stream2 | Flex2 Company CyberSecurity Posture
donate2.com
Donate2 | Stream2 | Flex2 Think Outside The Cart Experience the power of cart-free transactions Donate2 Forms: Donations & Team Fundraising Whether you’re looking for a faster way to take donations, want to offer the option of Digital Wallets like Apple Pay and Google Pay, or need beautiful easy-to-build forms your patrons will love, a Donate2 form is a great solution. Stream2: Video Subscriptions & Rental Stream2 allows you to sell and manage access to digital content seamlessly with an out of the box solution. With our Brightcove streaming platform integration, you are able to offer patrons and customers an unparalleled experience. Flex2 Forms: Memberships, Events & More... Looking to offer a recurring membership, sell tickets to an online or in person event, or to set up a form with additional options? The flexibility of a Flex2 form allows you to quickly configure forms for practically anything. Integrated with Stripe, Tessitura, Brightcove, ActiveCampaign, Prospect2, Google, Twilio and QRCode.
Donate2 | Stream2 | Flex2 A.I CyberSecurity Scoring
DSF Risk Score (AI oriented)Between 750 and 799
DSF
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
DSF Global Score (TPRM)XXXX
DSF
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
DSF Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
DSF Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for DSF
Incidents vs Fundraising Industry Average (This Year)
No incidents recorded for Donate2 | Stream2 | Flex2 in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Donate2 | Stream2 | Flex2 in 2025.
Incident Types DSF vs Fundraising Industry Avg (This Year)
No incidents recorded for Donate2 | Stream2 | Flex2 in 2025.
Incident History — DSF (X = Date, Y = Severity)
DSF cyber incidents detection timeline including parent company and subsidiaries
DSF Company Subsidiaries
Donate2 | Stream2 | Flex2 Think Outside The Cart Experience the power of cart-free transactions Donate2 Forms: Donations & Team Fundraising Whether you’re looking for a faster way to take donations, want to offer the option of Digital Wallets like Apple Pay and Google Pay, or need beautiful easy-to-build forms your patrons will love, a Donate2 form is a great solution. Stream2: Video Subscriptions & Rental Stream2 allows you to sell and manage access to digital content seamlessly with an out of the box solution. With our Brightcove streaming platform integration, you are able to offer patrons and customers an unparalleled experience. Flex2 Forms: Memberships, Events & More... Looking to offer a recurring membership, sell tickets to an online or in person event, or to set up a form with additional options? The flexibility of a Flex2 form allows you to quickly configure forms for practically anything. Integrated with Stripe, Tessitura, Brightcove, ActiveCampaign, Prospect2, Google, Twilio and QRCode.
Loading...
DSF Similar Companies
Chartered Institute of Fundraising
The Chartered Institute of Fundraising is the professional body for UK fundraising. We champion our members’ excellence in fundraising. We support fundraisers through professional development and education. We connect fundraisers across all sectors and skill sets to share and learn with each other
As the leading global type 1 diabetes research and advocacy organization, Breakthrough T1D helps make everyday life with type 1 diabetes better while driving toward cures. We do this by investing in the most promising research, advocating for progress by working with government to address issues t
Plan International Canada
Plan International Canada is a member of a global organization dedicated to advancing children’s rights in over 80 countries. We exist to create a just world where children, especially girls, learn, lead, decide and thrive. In partnership with local governments, organizations and communities.
Via Generosity
The Via Generosity team is dedicated to providing support raising training, resources and networking for several ministries across the world. One of the biggest obstacles in completing the Great Commission is finances. Many people leave the ministry field because they either cannot get fully funded
United Way of Greater Plymouth County
OUR MISSION... We unite people, ideas and resources to improve lives. OUR VISION... We envision a safe, healthy and well educated community where peoples' needs are met effectively, respectfully and compassionately. United Way of Greater Plymouth County focuses on the vital and interconne
Commonwealth Alliance for Rural Colleges
The Commonwealth Alliance's mission is "to provide our member institutions the resources to ensure their students have access to an affordable, value-based education that prepares them for success in a global economy". Since 1965 Commonwealth Alliance for Rural Colleges (formerly known as The Virg
.png)
DSF CyberSecurity News
January 14, 2025 08:00 AM
Russia's Lavrov says potential bankruptcy or sale of Nord Stream 2 gas pipeline operator would be theft
Russian Foreign Minister Sergei Lavrov said on Tuesday that the potential bankruptcy or sale of the operator of the completed but never...
September 28, 2022 07:00 AM
Single line of Nord Stream 2 can still export gas, analysts say
Russia could export gas to Europe through one of the idle Nord Stream 2 pipelines that was the only of Nord Stream's four lines still capable of working.
September 26, 2022 07:00 AM
Gas from Russia's Nord Stream 2 pipeline leaks into Baltic Sea
A gas leak overnight from the defunct Russian-owned Nord Stream 2 pipeline drained into the Baltic Sea.
March 04, 2022 08:00 AM
Russia's Nord Stream 2 pipeline operator has not filed for insolvency -TASS
The operator of Russia's Nord Stream 2 natural gas pipeline to Germany has not filed for insolvency, TASS news agency cited the company as...
January 26, 2022 08:00 AM
Nord Stream 2 registers German subsidiary, certification still suspended
The operator of the Russian Nord Stream 2 gas pipeline has registered a subsidiary for the German part of the pipeline to meet German...
August 22, 2021 07:00 AM
Ukraine insists Nord Stream 2 is ‘dangerous’ despite German reassurances
Ukrainian President Volodymyr Zelenskiy insisted the Nord Stream 2 gas pipeline is a “dangerous weapon,” posing a threat not only to Ukraine but to all of...
August 20, 2021 07:00 AM
Just 15 km of Nord Stream 2 pipeline to go, says Putin
There are only 15 km (9 miles) left to finish the Nord Stream 2 gas pipeline from Russia to Germany that bypasses Ukraine, Russian President...
May 21, 2021 07:00 AM
Article | Nord Stream 2 sanctions report avoids targeting major corporations
BRUSSELS — U.S. President Joe Biden largely pulled his punches in the latest State Department sanctions report on the Nord Stream 2 natural...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
DSF CyberSecurity History Information
Official Website of Donate2 | Stream2 | Flex2
The official website of Donate2 | Stream2 | Flex2 is http://donate2.com.
Donate2 | Stream2 | Flex2’s AI-Generated Cybersecurity Score
According to Rankiteo, Donate2 | Stream2 | Flex2’s AI-generated cybersecurity score is 759, reflecting their Fair security posture.
How many security badges does Donate2 | Stream2 | Flex2’ have ?
According to Rankiteo, Donate2 | Stream2 | Flex2 currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Donate2 | Stream2 | Flex2 have SOC 2 Type 1 certification ?
According to Rankiteo, Donate2 | Stream2 | Flex2 is not certified under SOC 2 Type 1.
Does Donate2 | Stream2 | Flex2 have SOC 2 Type 2 certification ?
According to Rankiteo, Donate2 | Stream2 | Flex2 does not hold a SOC 2 Type 2 certification.
Does Donate2 | Stream2 | Flex2 comply with GDPR ?
According to Rankiteo, Donate2 | Stream2 | Flex2 is not listed as GDPR compliant.
Does Donate2 | Stream2 | Flex2 have PCI DSS certification ?
According to Rankiteo, Donate2 | Stream2 | Flex2 does not currently maintain PCI DSS compliance.
Does Donate2 | Stream2 | Flex2 comply with HIPAA ?
According to Rankiteo, Donate2 | Stream2 | Flex2 is not compliant with HIPAA regulations.
Does Donate2 | Stream2 | Flex2 have ISO 27001 certification ?
According to Rankiteo,Donate2 | Stream2 | Flex2 is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Donate2 | Stream2 | Flex2
Donate2 | Stream2 | Flex2 operates primarily in the Fundraising industry.
Number of Employees at Donate2 | Stream2 | Flex2
Donate2 | Stream2 | Flex2 employs approximately None employees people worldwide.
Subsidiaries Owned by Donate2 | Stream2 | Flex2
Donate2 | Stream2 | Flex2 presently has no subsidiaries across any sectors.
Donate2 | Stream2 | Flex2’s LinkedIn Followers
Donate2 | Stream2 | Flex2’s official LinkedIn profile has approximately 172 followers.
NAICS Classification of Donate2 | Stream2 | Flex2
Donate2 | Stream2 | Flex2 is classified under the NAICS code 561499, which corresponds to All Other Business Support Services.
Donate2 | Stream2 | Flex2’s Presence on Crunchbase
No, Donate2 | Stream2 | Flex2 does not have a profile on Crunchbase.
Donate2 | Stream2 | Flex2’s Presence on LinkedIn
Yes, Donate2 | Stream2 | Flex2 maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/_donate2.
Cybersecurity Incidents Involving Donate2 | Stream2 | Flex2
As of December 21, 2025, Rankiteo reports that Donate2 | Stream2 | Flex2 has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
Donate2 | Stream2 | Flex2 has an estimated 1,146 peer or competitor companies worldwide.
Donate2 | Stream2 | Flex2 CyberSecurity History Information
How many cyber incidents has Donate2 | Stream2 | Flex2 faced ?
Total Incidents: According to Rankiteo, Donate2 | Stream2 | Flex2 has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at Donate2 | Stream2 | Flex2 ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
Versa SASE Client for Windows versions released between 7.8.7 and 7.9.4 contain a local privilege escalation vulnerability in the audit log export functionality. The client communicates user-controlled file paths to a privileged service, which performs file system operations without impersonating the requesting user. Due to improper privilege handling and a time-of-check time-of-use race condition combined with symbolic link and mount point manipulation, a local authenticated attacker can coerce the service into deleting arbitrary directories with SYSTEM privileges. This can be exploited to delete protected system folders such as C:\\Config.msi and subsequently achieve execution as NT AUTHORITY\\SYSTEM via MSI rollback techniques.
Risk Information
cvss4
Base: 8.5
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
The WP JobHunt plugin for WordPress, used by the JobCareer theme, is vulnerable to unauthorized modification of data due to a missing capability check on the 'cs_update_application_status_callback' function in all versions up to, and including, 7.7. This makes it possible for authenticated attackers, with Candidate-level access and above, to inject cross-site scripting into the 'status' parameter of applied jobs for any user.
Risk Information
cvss3
Base: 7.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L
Description
The WP JobHunt plugin for WordPress, used by the JobCareer theme, is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 7.7 via the 'cs_update_application_status_callback' due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with Candidate-level access and above, to send a site-generated email with injected HTML to any user.
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Description
The FiboSearch – Ajax Search for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's `thegem_te_search` shortcode in all versions up to, and including, 1.32.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This vulnerability requires TheGem theme (premium) to be installed with Header Builder mode enabled, and the FiboSearch "Replace search bars" option enabled for TheGem integration.
Risk Information
cvss3
Base: 5.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
References
- https://plugins.trac.wordpress.org/browser/ajax-search-for-woocommerce/tags/1.32.0/partials/themes/thegem-elementor.php#L104
- https://plugins.trac.wordpress.org/browser/ajax-search-for-woocommerce/tags/1.32.0/partials/themes/thegem-elementor.php#L94
- https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3420841%40ajax-search-for-woocommerce%2Ftrunk&old=3398612%40ajax-search-for-woocommerce%2Ftrunk&sfp_email=&sfph_mail=#file136
- https://wordpress.org/plugins/ajax-search-for-woocommerce
- https://www.wordfence.com/threat-intel/vulnerabilities/id/8149103e-105d-401d-8a15-b07d131baaac?source=cve
Description
The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.11.0 via the ajax_get_members function. This is due to the use of a predictable low-entropy token (5 hex characters derived from md5 of post ID) to identify member directories and insufficient authorization checks on the unauthenticated AJAX endpoint. This makes it possible for unauthenticated attackers to extract sensitive data including usernames, display names, user roles (including administrator accounts), profile URLs, and user IDs by enumerating predictable directory_id values or brute-forcing the small 16^5 token space.
Risk Information
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
References
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/includes/class-functions.php#L41
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/includes/core/class-ajax-common.php#L61
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/includes/core/class-member-directory.php#L205
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/includes/core/class-member-directory.php#L2795
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/templates/members.php#L26
- https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3421362%40ultimate-member%2Ftrunk&old=3408617%40ultimate-member%2Ftrunk&sfp_email=&sfph_mail=
- https://www.wordfence.com/threat-intel/vulnerabilities/id/61337d2d-d15a-45f2-b730-fc034eb3cd31?source=cve
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=_donate2' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
