What is the official website of Allianz Australia ?

The official website of Allianz Australia is https://www.allianz.com.au/.

What is Allianz Australia's cybersecurity risk score?

Allianz Australia has an AI-generated cybersecurity risk score of 762 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Allianz Australia experienced?

According to Rankiteo, Allianz Australia currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Allianz Australia been affected by any supply chain cyber incidents ?

According to Rankiteo, Allianz Australia has been affected by a supply chain cyber incident involving Snowflake, with the incident ID MEREQUUNIMAEMGMGOOTOYSNOALLORARIPTIC1775528897.

Does Allianz Australia have SOC 2 Type 1 certification ?

According to Rankiteo, Allianz Australia is not certified under SOC 2 Type 1.

Does Allianz Australia have SOC 2 Type 2 certification ?

According to Rankiteo, Allianz Australia does not hold a SOC 2 Type 2 certification.

Does Allianz Australia comply with GDPR ?

According to Rankiteo, Allianz Australia is not listed as GDPR compliant.

Does Allianz Australia have PCI DSS certification ?

According to Rankiteo, Allianz Australia does not currently maintain PCI DSS compliance.

Does Allianz Australia comply with HIPAA ?

According to Rankiteo, Allianz Australia is not compliant with HIPAA regulations.

Does Allianz Australia have ISO 27001 certification ?

According to Rankiteo,Allianz Australia is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Allianz Australia operate in ?

Allianz Australia operates primarily in the Insurance industry.

How many employees does Allianz Australia have ?

Allianz Australia employs approximately 3,162 people worldwide.

Does Allianz Australia own any subsidiaries ?

Allianz Australia presently has no subsidiaries across any sectors.

How many LinkedIn followers does Allianz Australia have ?

Allianz Australia's official LinkedIn profile has approximately 58,678 followers.

What is the NAICS classification code for Allianz Australia ?

Allianz Australia is classified under the NAICS code 524, which corresponds to Insurance Carriers and Related Activities.

Does Allianz Australia have a Crunchbase profile ?

No, Allianz Australia does not have a profile on Crunchbase.

Does Allianz Australia have a LinkedIn profile ?

Yes, Allianz Australia maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/allianz-australia-limited.

How many cybersecurity incidents has Allianz Australia experienced ?

As of June 14, 2026, Rankiteo reports that Allianz Australia has experienced 9 cybersecurity incidents.

How many peer or competitor companies does Allianz Australia have ?

Allianz Australia has an estimated 15,536 peer or competitor companies worldwide.

What types of cybersecurity incidents has Allianz Australia faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Breach, Cyber Attack and Ransomware.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Allianz Australia

Boost Score +25 with badge (5 left)

762

/1000

Fair

787

/1000

Fair

Allianz Australia Vendor Cyber Rating & Cyber Score

allianz.com.au

Add Your Compliance Badge

The Allianz Australia Group operates in Australia and New Zealand. It includes one of Australia's largest general insurers, a leading private workers' compensation insurer, and a life insurer. Allianz Australia delivers a wide range of personal, commercial and corporate insurance products and services. Allianz Australia has approximately 5500 staff and is a wholly-owned subsidiary of the worldwide Allianz Group, one of the world's largest financial services companies. To find out more about careers at Allianz, visit www.allianz.com.au/careers ____ We reserve the right to hide, moderate or remove comments and content we consider to breach our house rules. To learn more about our Social Media House Rules here:

Allianz Australia A.I CyberSecurity Scoring

Scoring History

Allianz Australia

Allianz Australia CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Allianz

Ransomware

100

12/2025

Snowflake

MEREQUUNIMAEMGM...

Allianz Australia

Breach

10/2025

ALL229272210012...

Allianz Australia

Ransomware

100

8/2025

ALL316081425

Allianz Life

Breach

7/2025

ALL1772058877

Allianz Australia

Cyber Attack

7/2025

ALL259272510012...

Allianz Australia

Breach

100

5/2025

ALL505090325

Allianz Australia

Breach

6/2024

ALL003320010032...

Allianz Australia

Breach

4/2024

ALL841080425

Allianz Australia

Ransomware

100

01/2023

ALL435050724

Loading…

A.I.

Allianz Australia Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Allianz Australia

Incidents vs Insurance Industry Avg (This Year)

No incidents recorded for Allianz Australia in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Allianz Australia in 2026.

Incident Types Allianz Australia vs Insurance Industry Avg (This Year)

No incidents recorded for Allianz Australia in 2026.

Incident History - Allianz Australia (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Allianz Australia Subsidiaries

Allianz Australia

Insurance

Website: https://www.allianz.com.au/

Company Size: 5,001-10,000 employees

Allianz Broker AustraliaInsurance

AllianzFinancial Services

PIMCOInvestment Management

Allianz PartnersInsurance

Allianz Partners EspañaInsurance

Allianz Partners BrasilInsurance

Allianz Partners TürkiyeConsumer Services

Allianz Partners IndiaInsurance

Allianz Partners FranceInsurance

Allianz Partners UK and IrelandInsurance

Allianz Partners AustraliaInsurance

Allianz Partners ItalyInsurance

Allianz Global Assistance CanadaInsurance

Allianz Partners MexicoInsurance

Allianz Partners New ZealandInsurance

Allianz Partners APAC & MEAInsurance

Allianz Partners PortugalInsurance

Allianz Partners USAInsurance

Allianz Partners BelgiumInsurance

Allianz Partners NederlandInsurance

Allianz Partners DeutschlandInsurance

Allianz Partners RéunionBusiness Consulting and Services

Allianz Partners SwitzerlandInsurance

Allianz Partners Nordic & BalticsInsurance

Allianz Partners JapanFinancial Services

Allianz Partners ColombiaAdministrative and Support Services

Allianz Partners PolskaInsurance

Allianz Partners MalaysiaFinancial Services

Allianz BrasilInsurance

Allianz Global InvestorsFinancial Services

Allianz Global Investors FranceFinancial Services

Allianz Global Investors ItaliaFinancial Services

Allianz Global Investors DACHFinancial Services

アリアンツ・グローバル・インベスターズ・ジャパンFinancial Services

risklab - the Investment and Risk Advisory Experts of Allianz Global InvestorsFinancial Services

Allianz Global Investors EspañaFinancial Services

Allianz TechnologyIT Services and IT Consulting

Allianz FranceInsurance

Allianz TürkiyeInsurance

Allianz MarocInsurance

Mutakamela InsuranceInsurance

Allianz ColombiaInsurance

Allianz EspañaInsurance

Allianz Partners, HealthInsurance

Allianz MalaysiaInsurance

Allianz ItaliaInsurance

Allianz ServicesFinancial Services

Allianz Services IndiaFinancial Services

Allianz ConsultingBusiness Consulting and Services

Allianz LifeInsurance

Allianz EgyptInsurance

Allianz PortugalInsurance

Allianz SuisseInsurance

ElectriX.swissConsumer Services

Allianz Broker AcademyInsurance

PIMCO Prime Real EstateReal Estate

Allianz-Tiriac AsigurariInsurance

Allianz DirectInsurance

Allianz GreeceInsurance

Allianz XVenture Capital and Private Equity Principals

Allianz Asia PacificInsurance

Allianz in DeutschlandInsurance

Allianz Kunde und Markt GmbHInsurance

Allianz Beratungs- und Vertriebs AGInsurance

Allianz ONEInsurance

Allianz Versicherungs AGInsurance

Allianz Private Krankenversicherungs AGInsurance

Allianz Lebensversicherungs-AGInsurance

SNA LebanonInsurance

Allianz BelgiumInsurance

Allianz NederlandFinancial Services

Allianz IrelandInsurance

Allianz ReinsuranceInsurance

Allianz ÖsterreichInsurance

metafinanz Informationssysteme GmbHIT Services and IT Consulting

Allianz AyudhyaInsurance

Kaiser X Labs. A company of AllianzDesign Services

Allianz BulgariaFinancial Services

Allianz - Slovenska poistovna, a.s.Insurance

Allianz Life GhanaInsurance

KOLETHE CONSULTING INC.,IT Services and IT Consulting

Allianz LuxembourgInsurance

Allianz pojišťovna Česká republikaInsurance

SyncierInformation Technology & Services

Allianz Asset ManagementFinancial Services

Allianz Darta SavingInsurance

Allianz Hungária Zrt.Insurance

Allianz Pension PartnersFinancial Services

Allianz Zagreb d.d.Insurance

Allianz Reinsurance America, Inc.Insurance

PROJECT M MagazineFinancial Services

Allianz ArgentinaInsurance

Allianz IndonesiaInsurance

Allianz Australia Personal InjuryInsurance

Allianz Australia AutomotiveInsurance

Loading…

Allianz Australia Similar Companies

Progressive Insurance

cb progressive.com

Every journey has a beginning, and wherever you are on your career path, we want to help you along the way. At Progressive, we exist to help people move forward and live fully. We strive to create a welcoming and flexible work environment for everyone, where employees are encouraged to risk, learn, and grow. With our supportive culture, work-life balance, and one of the largest contemporary art collections in the country, there’s a reason we’ve been named one of the best places to work. For over 80 years, Progressive has offered customers a wide range of insurance choices, including auto, home, renters, commercial auto, small business, motorcycle, boat policies, and more. Progressive is the second largest auto insurer in the country—a combined effort of every single person at Progressive. We’re a dynamic group of more than 65,000 talented employees—from all walks of life, all fields of business, and all 50 states. Everyone here plays a role in our success as we continue to help our customers move forward and live fully. With hundreds of career paths including Claims, Customer Care, Sales, Marketing, Legal, IT, Data Analysis, and more, you are sure to find the destination for your career at Progressive.

Chubb

cb chubb.com

Chubb is a world leader in insurance. With operations in 54 countries and territories, Chubb provides commercial and personal property and casualty insurance, personal accident and supplemental health insurance, reinsurance and life insurance to a diverse group of clients. As an underwriting company, we assess, assume and manage risk with insight and discipline. We service and pay our claims fairly and promptly. The company is also defined by its extensive product and service offerings, broad distribution capabilities, exceptional financial strength and local operations globally. Parent company Chubb Limited is listed on the New York Stock Exchange (NYSE: CB) and is a component of the S&P 500 index. Chubb maintains executive offices in Zurich, New York, London, Paris and other locations, and employs approximately 40,000 people worldwide. Read our Social Media Guidelines here: https://www.chubb.com/us-en/about-chubb/chubbs-social-media-guidelines.aspx Notre section « À propos » est également disponible en français, ici: https://www.chubb.com/ca-fr/about-chubb-in-canada/a-propos-de-chubb-au-canada.aspx

Bajaj General Insurance

bajajgeneralinsurance.com

Bajaj General Insurance Limited (formerly known as Bajaj Allianz General Insurance Company Limited) is one of India’s leading, most trusted and dynamic private general insurance companies. It is a subsidiary of Bajaj Finserv Limited, India’s leading and most diversified financial services group. Bajaj General offers a broad portfolio of innovative and customer-focused insurance solutions, spanning motor, health, and home insurance, along with specialised products such as pet insurance, wedding insurance, event protection, cyber insurance, and rural insurance. Established in 2001, the company has grown its footprint to nearly 1,500 towns and cities across India, ensuring easy access and a close connection to its customers. With a strong legacy, a forward-looking mindset, and an unwavering focus on its ‘Customer-First’ philosophy, Bajaj General remains committed to protecting what matters most, empowering individuals, families, and businesses to live with confidence and peace of mind.

Axis Max Life Insurance Limited

axismaxlife.com

Axis Max Life Insurance Limited (earlier known as Max Life Insurance Company Limited) is a Joint Venture between Max Financial Services Limited and Axis Bank Limited. Max Financial Services Ltd. is a part of the Max Group, an Indian multi-business corporation. Axis Max Life Insurance Limited has an individual death claims paid ratio of 99.70% as per the annual audited financials for FY24-25. We offer comprehensive protection and long-term savings life insurance solutions, through our multichannel distribution including agency and third party distribution partners. You can reach us at our: Customer Service Helpline - 1860 120 5577 (9:00 AM to 6:00 PM Monday to Saturday) or, Write to us at [email protected]. You can also contact us through our portal https://www.axismaxlife.com/contact-us/write-to-us. Axis Max Life Insurance Limited has built its operations over almost two decades through a need-based sales process, a customer-centric approach to engagement and service delivery and trained human capital. As per public disclosures, during the financial year 2024-25, • As on 31st March 2025 the Company has Rs. 175,072 crore of assets under management(AUM), and • A Sum Assured in Force of Rs. 2,191,857 crore. For more information, please visit the Company's website at www.axismaxlife.com

Tokio Marine Group

tokiomarinehd.com

Tokio Marine Group is a global insurance group that provides safety and security to customers worldwide. The Group consists of Tokio Marine Holdings and over 250 subsidiaries and 26 affiliates located in more than 480 cities in 46 countries and regions worldwide, operating extensively in the non-life (P&C) insurance business, life insurance business, and financial and general businesses. The insurance business is based upon the commitment to be there for our clients in their moment of need. It is a people’s business, therefore our people and the trust they engender is everything. We will continue to build a workforce that has been empowered and enabled to think and act from the customer's point of view and to live up to our corporate vision to be a Good Company.

GEICO

gei.co

At GEICO, we offer a rewarding career where your ambitions are met with endless possibilities. Every day we honor our iconic brand by offering quality coverage to millions of customers and being there when they need us most. We thrive on relentless innovation to exceed our customers' expectations while making a real impact on local communities nationwide. Founded in 1936, GEICO is a member of the Berkshire Hathaway family of companies and one of the largest auto insurers in the United States.

Aflac

aflac.com

Over 50 Million people worldwide have chosen Aflac because of our commitment to providing customers with the confidence that comes from knowing they have assistance in being prepared for whatever life may bring. With Aflac, whether you're a large business or a small one, you can provide your employees with the kind of benefits they’d expect from a bigger company, helping your business stand out from the crowd. Hundreds of thousands of businesses across the United States already make Aflac available to their employees—at no direct cost to their company. Choose from a wide range of products that can help your employees with health events—from accidents, to disability, to cancer, to life insurance. Your employees enjoy benefits from Aflac, all employee-paid. Please check out Aflac.com for more information.

Marsh Risk

marsh.com

We help our clients and colleagues grow — and our communities thrive — by protecting and promoting possibility. We seek better ways to manage risk and define more effective paths to the right outcome. We go beyond risk to rewards for our clients, our company, our colleagues, and the communities in which we serve. Marsh Risk is a part of Marsh. Together with Mercer, Guy Carpenter, and Oliver Wyman, we help organizations build resilience and competitive advantages from every angle. With annual revenue over $24 billion and more than 90,000 colleagues in 130 countries, Marsh helps build the confidence to thrive through the power of perspective.

CNO Financial Group

CNOinc.com

CNO Financial Group, Inc. (NYSE: CNO) secures the future of middle-income America. CNO provides life and health insurance, annuities, financial services, and workforce benefits solutions through our family of brands, including Bankers Life, Colonial Penn, Optavise and Washington National. Our customers work hard to save for the future, and we help protect their health, income and retirement needs with 3.2 million policies and $38 billion in total assets. Our 3,500 associates, 4,900 exclusive agents and more than 5,500 independent partner agents guide individuals, families, and businesses through a lifetime of financial decisions. We are financially strong and well positioned for continued growth. At CNO, we're looking for ambitious people who want to do more. We'll provide you with opportunities to grow your skills through challenging professional experiences in a flexible, hybrid workplace. If you're looking for a culture that encourages development, helps you reach your potential, and rewards you for your contribution, then CNO Financial Group is right for you. For more information, visit CNOinc.com.

Loading…

NEWS

Allianz Australia CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

January 14, 2026 08:00 AM

Allianz Risk Barometer 2026: Cyber remains top business risk but AI fastest riser at #2

Cyber incidents created many headlines in 2025 and are still the biggest worry for companies globally in 2026, according to the Allianz Risk...

Read Article

January 14, 2026 08:00 AM

Cyber Threats Dominate Global Risk Landscape as AI Emergence Reshapes 2026 Outlook

Allianz Risk Barometer shows cyber incidents maintaining top spot for fifth consecutive year, while AI surges to second position amid...

Read Article

November 10, 2025 08:00 AM

Allianz UK Joins Expanding List of Clop’s Alleged Oracle E-Business Suite Victims

The attackers gained access through the company's EBS system, which manages personal lines business, including home, car, pet,...

Read Article

October 03, 2025 07:00 AM

Allianz leveraging AI-driven alerts and data intelligence to better predict the likelihood of incidents

Allianz Insurance Australia is now enabled with a scalable data analytics platform – a crucial tool for an insurer to simplify the business...

Read Article

October 02, 2025 07:00 AM

1.5 Million Impacted by Allianz Life Data Breach

Allianz Life Insurance Company of North America is notifying 1.5 million people that their personal information was stolen in a data breach.

Read Article

September 30, 2025 07:00 AM

Cyber security resilience 2025 – Claims and risk management trends

The cyber risk and insurance landscape in 2025 reveals a complex and evolving threat environment. Large insured companies are becoming...

Read Article

September 26, 2025 07:00 AM

Cyber insurance claims steady, but risk environment remains complex

The cyber insurance sector in 2025 is witnessing a shift in risk dynamics as large organisations strengthen their defences against cyber...

Read Article

September 24, 2025 07:00 AM

Cyber Risk Trends 2025

Explore Allianz Commercial's 2025 outlook on cyber risk: ransomware, supply chain vulnerabilities, social engineering, resilience gap,...

Read Article

September 24, 2025 07:00 AM

Allianz: Ransomware attacks remain the top driver of cyber incidents

Allianz published its "Cyber security resilience 2025 – Claims and risk management trends" report, revealing a complex & evolving threat...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-12175

SUMMARY

A vulnerability was detected in CodeAstro Student Attendance Management System 1.0. Impacted is an unknown function of the file /attendance-php/Admin/createStudents.php. Performing a manipulation of the argument admissionNumber results in sql injection. Remote exploitation of the attack is possible. The exploit is now public and may be used.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 4.7)

cvss2

Base Score: 5.8

Complexity: LOW

AV:N/AC:L/Au:M/C:P/I:P/A:P

cvss3

Base Score: 4.7

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 2.0

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

1.2

REFERENCES

CVE-2026-12174

SUMMARY

A security vulnerability has been detected in D-Link DCS-935L 1.10.01. This issue affects the function snprintf of the file /web/cgi-bin/greece/rhea of the component HTTP Handler. Such manipulation of the argument data leads to format string. The attack may be launched remotely. The exploit has been disclosed publicly and may be used.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 8.8)

cvss2

Base Score: 9.0

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:C/A:C

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 7.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

2.8

REFERENCES

CVE-2026-12183

SUMMARY

Nefteprodukttekhnika BUK TS-G Gas Station Automation System 2.9.1 through 2.10.2 on Linux contains an Improper Authentication vulnerability (CWE-287) in the system configuration module. The /php/ajax-login.php endpoint returns userid=1 (administrator) in response to any HTTP POST request that supplies arbitrary credentials (e.g., action=dologin&login=<any_value>&pwd=<any_value>), and subsequent privileged endpoints under /php/ajax-main.php and /modules/* do not validate a server-side session. A remote unauthenticated attacker can invoke any administrative action exposed by the configuration module, including reading and modifying user rules, fuel tank gauges, fuel dispensers, relays, cash registers, bank terminals, fuel cards, price and customer displays, cash collection, and pricing rules.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 9.8)

cvss3

Base Score: 9.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 9.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

3.9

REFERENCES

CVE-2026-6428

SUMMARY

SQL Injection in reports/catalogue_out.pl in Koha Community Koha through 22.11.37, 23.x, 24.x before 24.11.16, 25.05.x before 25.05.11, 25.11.x before 25.11.05, 26.05.x before 26.05.01, and 26.11.x before 26.11.00 allows an authenticated staff user with the Reports module flag to read arbitrary data from the Koha application database via the Filter URL parameter when the Criteria parameter matches /branchcode/. The vulnerable sink in sub calculate concatenates the unmodified Filter request parameter directly into a LIKE clause of the auxiliary $strsth2 statement and executes it via DBI without bound parameters: my $f = @$filters[0]; $f =~ s/\*/%/g; $strsth2 .= " AND $column LIKE '$f' "; This enables error-based SQL injection (e.g., via EXTRACTVALUE) and full read access to sensitive tables including borrowers (password hashes, 2FA secrets, PII), borrower_password_recovery, api_keys, and sessions. Proof of concept (error-based, single request): GET /cgi-bin/koha/reports/catalogue_out.pl?do_it=1&output=screen&Limit=10&Criteria=branchcode&Filter=x'+AND+EXTRACTVALUE(1,CONCAT(0x7e,VERSION(),0x7c,USER(),0x7c,DATABASE(),0x7e))--+- Cookie: CGISESSID=<LIBRARIAN_SESSION> The response body contains the DBI exception leaking the MariaDB version, database user, client IP, and database name, after which arbitrary data can be paged out using LIMIT n,1 / SUBSTRING(...). The vulnerable sink was introduced in commit 6bb77ae3e4 (2008-07-09); CVE-2015-4633 patched the same class in sibling files but did not generalise the fix to reports/catalogue_out.pl. Fixed in Koha 22.11.38, 24.11.16, 25.05.11, 25.11.05, 26.05.01, and 26.11.00 by replacing the raw concatenation with a parameterised placeholder.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 7.6)

cvss2

Base Score: 7.5

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:N/A:P

cvss3

Base Score: 7.6

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L

cvss4

Base Score: 5.6

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:X/V:C/RE:X/U:Amber

Impact Score

4.7

Exploitability

2.8

REFERENCES

CVE-2026-5513

SUMMARY

The Online Scheduling and Appointment Booking System – Bookly plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'bookly-customer-full-name' cookie in versions up to, and including, 27.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. Exploitation requires 'Remember personal information in cookies' setting to be enabled (disabled by default).

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 7.2)

cvss3

Base Score: 7.2

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

Impact Score

2.7

Exploitability

3.9

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…