What is the official website of AWS Training & Certification ?

The official website of AWS Training & Certification is https://aws.amazon.com/training/.

What is AWS Training & Certification's cybersecurity risk score?

AWS Training & Certification has an AI-generated cybersecurity risk score of 770 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has AWS Training & Certification experienced?

According to Rankiteo, AWS Training & Certification currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has AWS Training & Certification been affected by any supply chain cyber incidents ?

According to Rankiteo, AWS Training & Certification has been affected by multiple supply chain cyber incidents. The affected supply chain sources and their corresponding incident IDs are: npm, Inc. (Incident ID: ELAGITAMAOPENPM1780050263) Socket (Incident ID: AWSSOC1778833973) Braintrust (Incident ID: AMAUSE1778092688) Amazon Web Services (AWS) (Incident ID: LIMAMA1777312775) Vercel (Incident ID: AMAVERGITSTR1775204764) Amazon Web Services (AWS) (Incident ID: AMASTA1775118743) Aqua Security (Incident ID: AQUUSEAMASALCIS1775046662) Amazon Web Services (AWS) (Incident ID: EUR1774635987) Amazon Web Services (AWS) (Incident ID: SALAMAMICPINRED1774269319) NPM (Incident ID: GOOAMANPMGIT1773319158) Amazon Web Services (AWS) (Incident ID: RELLEX1772562253) Amazon Web Services (AWS) (Incident ID: EUR1774628727) Amazon (Incident ID: AMAAPPMIC1770935300) ConnectWise (Incident ID: SMASIMCONAMADAT1775551328) Cisco (Incident ID: CISSAI1773859283) Amazon (Incident ID: LASAMA1769009064) LinkedIn (Incident ID: LINAWS1766995316) Microsoft Security (Incident ID: AMAORAMIC1770695748) Amazon Web Services (AWS) (Incident ID: AMAAWS1770152164) Cisco (Incident ID: SAL5732257091825) Wiz (Incident ID: AMAWIZ1768515615) NPM (Incident ID: GOONPMORGGOVAPPMETTHEAWSTIKK7-1773672350) Fortinet (Incident ID: FORCISAMAJPM1767748297)

Does AWS Training & Certification have SOC 2 Type 1 certification ?

According to Rankiteo, AWS Training & Certification is not certified under SOC 2 Type 1.

Does AWS Training & Certification have SOC 2 Type 2 certification ?

According to Rankiteo, AWS Training & Certification does not hold a SOC 2 Type 2 certification.

Does AWS Training & Certification comply with GDPR ?

According to Rankiteo, AWS Training & Certification is not listed as GDPR compliant.

Does AWS Training & Certification have PCI DSS certification ?

According to Rankiteo, AWS Training & Certification does not currently maintain PCI DSS compliance.

Does AWS Training & Certification comply with HIPAA ?

According to Rankiteo, AWS Training & Certification is not compliant with HIPAA regulations.

Does AWS Training & Certification have ISO 27001 certification ?

According to Rankiteo,AWS Training & Certification is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does AWS Training & Certification operate in ?

AWS Training & Certification operates primarily in the IT Services and IT Consulting industry.

How many employees does AWS Training & Certification have ?

AWS Training & Certification employs approximately None employees people worldwide.

Does AWS Training & Certification own any subsidiaries ?

AWS Training & Certification presently has no subsidiaries across any sectors.

How many LinkedIn followers does AWS Training & Certification have ?

AWS Training & Certification's official LinkedIn profile has approximately 1,449,692 followers.

What is the NAICS classification code for AWS Training & Certification ?

AWS Training & Certification is classified under the NAICS code 5415, which corresponds to Computer Systems Design and Related Services.

Does AWS Training & Certification have a Crunchbase profile ?

No, AWS Training & Certification does not have a profile on Crunchbase.

Does AWS Training & Certification have a LinkedIn profile ?

Yes, AWS Training & Certification maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/aws-training-&-certification.

How many cybersecurity incidents has AWS Training & Certification experienced ?

As of June 14, 2026, Rankiteo reports that AWS Training & Certification has experienced 61 cybersecurity incidents.

How many peer or competitor companies does AWS Training & Certification have ?

AWS Training & Certification has an estimated 40,681 peer or competitor companies worldwide.

What types of cybersecurity incidents has AWS Training & Certification faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Vulnerability, Ransomware, Cyber Attack, Breach and Data Leak.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

ATC

Boost Score +25 with badge (5 left)

770

/1000

Fair

795

/1000

Fair

AWS Training & Certification Vendor Cyber Rating & Cyber Score

amazon.com

Add Your Compliance Badge

Organizations across the globe are seeking individuals skilled in the transformative technologies of the cloud. To meet this growing demand, AWS Training and Certification equips the builders of today and tomorrow—experts and novices, practitioners and partners—with the knowledge they need to realize their cloud goals. Designed by the innovators at AWS, our training supports learners of all skill levels and our certifications validate expertise. We’re also upskilling and reskilling workforces through education programs that help businesses tap into a pool of diverse talent. It’s how AWS Training and Certification helps individuals and organizations leverage the power of the AWS Cloud.

ATC A.I CyberSecurity Scoring

Scoring History

ATC

AWS Training & Certification CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Amazon Web Services...

Cyber Attack

100

6/2026

GOOAMA178116664...

Amazon Web Services...

Cyber Attack

5/2026

npm, Inc.

ELAGITAMAOPENPM...

Amazon Science

Vulnerability

5/2026

OPEANTAMAXAI177...

AWS for Healthcare ...

Cyber Attack

5/2026

Socket

AWSSOC177883397...

Amazon Science

Breach

5/2026

Braintrust

AMAUSE177809268...

Amazon Web Services...

Cyber Attack

4/2026

Amazon Web Serv...

LIMAMA177731277...

Amazon

Cyber Attack

4/2026

ELFTEMCOUGRUAMA...

Amazon Web Services...

Cyber Attack

4/2026

Vercel

AMAVERGITSTR177...

Amazon Web Services...

Vulnerability

100

4/2026

Amazon Web Serv...

AMASTA177511874...

AWS Partners

Vulnerability

4/2026

AWSGITSTR177516...

Amazon Web Services...

Vulnerability

100

4/2026

Aqua Security

AQUUSEAMASALCIS...

Amazon Web Services...

Cyber Attack

3/2026

Amazon Web Serv...

EUR1774635987

Amazon Web Services...

Vulnerability

100

3/2026

Amazon Web Serv...

SALAMAMICPINRED...

Amazon Web Services...

Vulnerability

3/2026

AMA1773707045

Amazon Web Services...

Cyber Attack

3/2026

NPM

GOOAMANPMGIT177...

Amazon Web Services...

Vulnerability

3/2026

AMA1772792723

Amazon Web Services...

Cyber Attack

100

3/2026

AMA1772678135

Amazon Web Services...

Breach

100

3/2026

Amazon Web Serv...

RELLEX177256225...

Amazon

Cyber Attack

3/2026

AMA1775744757

Amazon Web Services...

Breach

3/2026

Amazon Web Serv...

EUR1774628727

Amazon

Vulnerability

100

2/2026

Amazon

AMAAPPMIC177093...

Amazon

Cyber Attack

2/2026

ConnectWise

SMASIMCONAMADAT...

Amazon

Breach

2/2026

AMA1770339008

Amazon

Cyber Attack

2/2026

AMAINSCOIGOOFLI...

Amazon

Cyber Attack

2/2026

AMA1773987972

AWS Partners

Breach

1/2026

AWSDIGOVH176978...

Amazon

Vulnerability

100

1/2026

Cisco

CISSAI177385928...

Amazon

Cyber Attack

1/2026

Amazon

LASAMA176900906...

AWS Databases & Ana...

Cyber Attack

1/2026

HUNAWS177273537...

Amazon Web Services...

Vulnerability

100

1/2026

GOOAMAOPEANT177...

AWS Partners

Cyber Attack

12/2025

LINAWS176699531...

Amazon Web Services...

Cyber Attack

100

12/2025

Microsoft Secur...

AMAORAMIC177069...

Amazon

Vulnerability

12/2025

AMAUNIGOOWAK176...

Amazon Web Services...

Cyber Attack

100

12/2025

KUBNVITENALIAMA...

AWS Training & Cert...

Breach

100

11/2025

Amazon Web Serv...

AMAAWS177015216...

Amazon Web Services...

Cyber Attack

11/2025

AMA1765965358

AWS Training & Cert...

Cyber Attack

100

10/2025

AMA023220210212...

AWS Training & Cert...

Cyber Attack

9/2025

AMA409264009232...

AWS Partners

Cyber Attack

100

9/2025

Cisco

SAL573225709182...

Amazon Web Services...

Vulnerability

100

9/2025

Wiz

AMAWIZ176851561...

For Industries

Vulnerability

8/2025

NPM

GOONPMORGGOVAPP...

AWS Training & Cert...

Cyber Attack

7/2025

RIN709072225

AWS Training & Cert...

Vulnerability

6/2025

AMA505082225

AWS Training & Cert...

Ransomware

100

5/2025

AMA503215011212...

Amazon Web Services...

Vulnerability

100

12/2024

Fortinet

FORCISAMAJPM176...

AWS Training & Cert...

Vulnerability

8/2024

AMA000082124

AWS Training & Cert...

Breach

7/2024

AMA000072524

AWS Training & Cert...

Cyber Attack

100

6/2024

AMA190211910222...

AWS Training & Cert...

Breach

09/2023

WHO04111223

AWS Training & Cert...

Vulnerability

6/2023

AMA016210111072...

AWS Training & Cert...

Data Leak

10/2021

TWI19174123

Amazon Web Services...

Cyber Attack

100

6/2021

AMA1768595116

AWS Training & Cert...

Breach

100

01/2021

RIN01518622

Amazon Web Services...

Cyber Attack

100

6/2020

AMA1780793273

AWS Training & Cert...

Data Leak

01/2020

AMA21461222

AWS Training & Cert...

Data Leak

01/2020

RIN211261222

AWS Training & Cert...

Data Leak

12/2019

RIN2178523

Amazon

Breach

6/2018

TIKAMA176901658...

AWS Training & Cert...

Data Leak

02/2018

AMA350181223

AWS Training & Cert...

Breach

3/2017

WHO631090125

AWS Training & Cert...

Cyber Attack

01/2016

AMA0417522

Loading…

A.I.

ATC Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for ATC

Incidents vs IT Services and IT Consulting Industry Avg (This Year)

No incidents recorded for AWS Training & Certification in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for AWS Training & Certification in 2026.

Incident Types ATC vs IT Services and IT Consulting Industry Avg (This Year)

No incidents recorded for AWS Training & Certification in 2026.

Incident History - ATC (X = Date, Y = Severity)

Loading…

SUBSIDIARY

AWS Training & Certification Subsidiaries

ATC

IT Services and IT Consulting

Website: https://aws.amazon.com/training/

Company Size: 10,001+ employees

AWS DevelopersTechnology, Information and Internet

AWS StartupsIT Services and IT Consulting

AmazonSoftware Development

Whole Foods MarketRetail

TwitchSoftware Development

Twitch AdsInternet Publishing

Amazon ScienceResearch Services

Amazon GamesEntertainment Providers

Amazon Lab126Computers and Electronics Manufacturing

Amazon AdsAdvertising Services

Amazon NewsRetail

Amazon Fulfillment Technologies & RoboticsSoftware Development

Transportation, Shipping, & Logistics at AmazonTransportation, Logistics, Supply Chain and Storage

Amazon CareersSoftware Development

Souq.comTechnology, Information and Internet

Amazon MusicEntertainment Providers

GoodreadsTechnology, Information and Internet

Amazon BusinessRetail

Zappos Family of CompaniesRetail

AudibleSoftware Development

Audible GmbHOnline Audio and Video Media

Sell on AmazonTechnology, Information and Internet

IMDb.comEntertainment Providers

RingComputers and Electronics Manufacturing

Amazon KeyTechnology, Information and Internet

Amazon Development Center PolandSoftware Development

Amazon Alexa DevelopersComputers and Electronics Manufacturing

Amazon PayTechnology, Information and Internet

ShopbopRetail

AbeBooks, an Amazon companyTechnology, Information and Internet

Amazon ClinicHospitals and Health Care

Alexa.comTechnology, Information and Internet

Amazon Ads PartnersAdvertising Services

Amazon AssociatesTechnology, Information and Internet

Amazon DeveloperConsumer Electronics

Woot, Inc.Retail

Amazon Fashion & SportsRetail Apparel and Fashion

CurseComputer Games

Fulfillment by AmazonWarehousing and Storage

Amazon PharmacyRetail Pharmacies

Quidsi Inc., a subsidiary of AmazonRetail

Wag.comManufacturing

Soap.comRetail

YoYo.comConsumer Goods

Casa.comRetail

BeautyBar.comRetail

Amazon LaunchpadInternet Publishing

Amazon KindleRetail

AWS ThinkboxSoftware Development

LOVEFiLMEntertainment Providers

CreateSpaceBook and Periodical Publishing

Buy with PrimeInternet Publishing

Comixology, an Amazon companyEntertainment

Just Walk Out technologyRetail

Annapurna LabsComputer Networking

A9.comTechnology, Information and Internet

Amazon | LiquavistaAppliances, Electrical, and Electronics Manufacturing

PerceiveSemiconductors

Amazon HelpRetail

Amazon AutosRetail Motor Vehicles

Brilliance PublishingBook and Periodical Publishing

Amazon Web Services (AWS)IT Services and IT Consulting

AWS Databases & AnalyticsIT Services and IT Consulting

Loading…

AWS Training & Certification Similar Companies

Sopra Steria

soprasteria.com

Sopra Steria, a major Tech player in Europe with 51,000 employees in nearly 30 countries, is recognised for its consulting, digital services and solutions. It helps its clients drive their digital transformation and obtain tangible and sustainable benefits. The Group provides end-to-end solutions to make large companies and organisations more competitive by combining in-depth knowledge of a wide range of business sectors and innovative technologies with a collaborative approach. Sopra Steria places people at the heart of everything it does and is committed to putting digital to work for its clients in order to build a positive future for all. In 2024, the Group generated revenues of €5.8 billion. The world is how we shape it

Ricoh USA, Inc.

ricoh-usa.com

At Ricoh, we bring people, processes, and technology together to make information work for you. We unlock the power of information so organizations can unlock the full potential of their people. We're a leader in information management and digital services, creating competitive advantage for over 1.4 million businesses across the globe. Our team members serve a vast array of industries, using an innovative mix of people, processes, and technology to free trapped and hidden insights. We believe having access to the right information translates to better business agility, more human experiences, and the ability to thrive in today's age of hybrid and borderless work.

NTT DATA, Inc.

global.ntt

NTT DATA, Inc. is a trusted global innovator of business and technology services. We're committed to helping clients innovate, optimize and transform for long-term success. Our R&D investments help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity.

Hitachi

hitachi.com

For over 100 years, Hitachi has been committed to developing innovations that improve lives. Today, this means creating superior technology and products that balance environment, well-being, and economic growth. We integrate IT, operational technology (OT), and products to transform critical infrastructure and industrial systems. Through Hitachi’s process for creating value from data, which we call Lumada, we combine rich industry insight and infrastructure expertise to create measurable, positive change. We operate across four global sectors – Digital Systems & Services, Energy, Mobility, and Connective Industries – plus a Strategic Social Innovation Business Unit developing next-generation solutions. With over 280,000 employees across 618 consolidated subsidiaries in over 140 countries, we partner with our customers to create a harmonized society and build what’s next for people and planet.

Infinite Computer Solutions

infinite.com

Infinite is a global leader in technology modernization, next-gen IT services and solutions, and digital engineering, with over two decades of experience helping clients turn digital transformation into business value. Leveraging an AI-first approach, we combine leading technologies, innovative platforms and accelerators with practical know-how. With the scale of over 23,000 talented professionals across 20+ global locations, we proudly serve hundreds of clients, across all industries including healthcare, financial services, telecom, technology, media, and more. At Infinite, we go beyond technology. We collaborate deeply with our clients to deliver innovative, tailored and client-focused solutions. Infinite is proud to be recognized by ISG, Avasant, Everest Group, HFS, Fosway Group and others for the innovation and leadership we bring to our clients.

CACI International Inc

cb caci.com

At CACI International Inc (NYSE: CACI), our 25,000 talented and dynamic employees are ever vigilant in delivering distinctive expertise and technology to meet our customers’ greatest challenges in national security. We are a company of good character, relentless innovation, and long-standing excellence. Our culture drives our success and earns us recognition as a Fortune World's Most Admired Company. CACI is a member of the Fortune 500™ Largest Companies, the Russell 1000 Index, and the S&P MidCap 400 Index. For more information, visit us at www.caci.com. CACI is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities

Mphasis

mphasis.com

A leading applied technology services company, we innovate to deliver service excellence and successful outcomes across sales, delivery and development. With our strategy to be agile, nimble and customer-centric, we anticipate the future of applied technology and predict tomorrow’s trends to keep our clients at the summit in an ever-changing marketplace. Leading with architecture and design, our next-gen solutions enable enterprises to accelerate on their digital transformation journey. Customer centricity is foundational to us and is reflected in the Mphasis’ Front2Back™ (F2B) transformation approach. F2B is a customer-in view approach that uses our industry-specific X2C2TM framework, and harnesses the power of cognitive technologies and rich data resident in enterprises to transform them. It is a way to introduce disruptive technology to smartly transform legacy environments. . Mphasis’ Service Transformation approach helps ‘shrink the core’ through the application of digital technologies across legacy environments within an enterprise, enabling businesses to stay ahead in a changing world. Mphasis’ core reference architectures and tools, speed and innovation with domain expertise and specialization are key to building strong relationships with marquee clients. Click here to know more Mphasis Presents #HowGeekAreYou Passion, Perseverance, Perfection – we are defined by these three words. Relentless in our pursuit of knowledge, we believe in accepting the difference and defining the 'new normal', staying true to our vision and values. We believe in growth by knowledge, responsibility by authority and freedom by flexibility. Be a part of a place where ideas are celebrated and perseverance is worshiped. Our doors are wide open, and breakthrough ideas are welcome from anyone. But we have a question to ask before we let you in: How Geek Are You? Click here to know more.

FIS

fisglobal.com

Unlocking financial technology. Bringing the world’s money into harmony. At FIS, we advance the way the world pays, banks, and invests. With decades of expertise, we provide financial technology solutions to financial institutions, businesses, and developers. Headquartered in Jacksonville, Florida, we’re a proud member of the Fortune 500® and the Standard & Poor’s 500® Index. Let's innovate together.

Gainwell Technologies

gainwelltechnologies.com

For 50 years, our nation’s federal Medicaid program has worked to improve the health, safety and well-being of America’s most vulnerable populations: low-income families, women and children, seniors, and those with disabilities. With positive health and cost outcomes that pierce inequities and impact economies, the success of these programs is inextricably tied to the prosperity of communities, individual states and the nation as a whole. We think that demands respect and, more importantly, is deserving of a lifetime commitment from innovators who can help those who operate within and around health and human services evolve — in any market at any stage. At Gainwell Technologies, that’s our sole focus. Built across more than five decades, Gainwell has intentionally seized opportunities to advance its digitally enabled services to meet agencies, health plans and MCOs where they are on their modernization journeys and propel them into the future of public health. Our commitment to innovation, deep experience and ability to leverage insights from customers across 50 states has allowed us to expand on next-generation, cloud-enabled technologies. Today, Gainwell offers one of the most comprehensive suites of scalable services and solutions on the market — all proven to deliver cost savings, better patient outcomes and an improved provider experience. Equally important to our expanding technologies and results: We bring ideas that bring policies to life.

Loading…

NEWS

AWS Training & Certification CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

February 19, 2026 08:00 AM

March sessions of the Amazon Quick Suite Learning Series

We provide live weekly webinars to give users of all technical backgrounds an on-demand experience to learn from our technical experts.

Read Article

February 02, 2026 08:00 AM

Best AWS Certification to Choose in 2026 – Complete Guide

Explore the best AWS certification options in 2026. Learn about courses, career paths, salaries, and how to choose the right AWS...

Read Article

January 27, 2026 08:00 AM

New courses and certification updates from AWS Training and Certification in January 2026

Welcome to January's post announcing new training course launches and certification launches — helping equip you and your teams with the...

Read Article

January 27, 2026 08:00 AM

AWS Generative AI Essentials: New learning now available on Coursera and edX

Using AI effectively isn't just a nice-to-have skill—it's essential for career growth, team and organizational success. AWS generative AI...

Read Article

January 22, 2026 08:00 AM

Level Up Your End User Computing Skills: AWS Digital Course to Badge Success

The AWS End User Computing Specialty Badge comprises three progressive courses plus a comprehensive 60-question certification exam. Each course...

Read Article

December 17, 2025 08:00 AM

Upgraded AWS Certification exam guides are now available

Starting today, you can find all AWS Certification exam guides in one place through AWS Documentation. On AWS Documentation, you'll have...

Read Article

December 17, 2025 08:00 AM

Collaborative AI Model Training with Rhino Federated Computing on AWS

Conclusion. Rhino FCP on AWS enables collaborative AI model development in HCLS through its integration of FC capabilities with AWS' security...

Read Article

December 16, 2025 08:00 AM

New courses and certification updates from AWS Training and Certification in December 2025

New courses and certification updates from AWS Training and Certification in December 2025 · New AWS Skill Builder subscription features · Free...

Read Article

December 16, 2025 08:00 AM

Hands-on with AWS: New Lab Series launches on Coursera

Transform your cloud skills from theory to practice with our newest hands-on learning experiences. Employers seek candidates with practical...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-12175

SUMMARY

A vulnerability was detected in CodeAstro Student Attendance Management System 1.0. Impacted is an unknown function of the file /attendance-php/Admin/createStudents.php. Performing a manipulation of the argument admissionNumber results in sql injection. Remote exploitation of the attack is possible. The exploit is now public and may be used.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 4.7)

cvss2

Base Score: 5.8

Complexity: LOW

AV:N/AC:L/Au:M/C:P/I:P/A:P

cvss3

Base Score: 4.7

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 2.0

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

1.2

REFERENCES

CVE-2026-12174

SUMMARY

A security vulnerability has been detected in D-Link DCS-935L 1.10.01. This issue affects the function snprintf of the file /web/cgi-bin/greece/rhea of the component HTTP Handler. Such manipulation of the argument data leads to format string. The attack may be launched remotely. The exploit has been disclosed publicly and may be used.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 8.8)

cvss2

Base Score: 9.0

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:C/A:C

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 7.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

2.8

REFERENCES

CVE-2026-12183

SUMMARY

Nefteprodukttekhnika BUK TS-G Gas Station Automation System 2.9.1 through 2.10.2 on Linux contains an Improper Authentication vulnerability (CWE-287) in the system configuration module. The /php/ajax-login.php endpoint returns userid=1 (administrator) in response to any HTTP POST request that supplies arbitrary credentials (e.g., action=dologin&login=<any_value>&pwd=<any_value>), and subsequent privileged endpoints under /php/ajax-main.php and /modules/* do not validate a server-side session. A remote unauthenticated attacker can invoke any administrative action exposed by the configuration module, including reading and modifying user rules, fuel tank gauges, fuel dispensers, relays, cash registers, bank terminals, fuel cards, price and customer displays, cash collection, and pricing rules.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 9.8)

cvss3

Base Score: 9.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 9.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

3.9

REFERENCES

CVE-2026-6428

SUMMARY

SQL Injection in reports/catalogue_out.pl in Koha Community Koha through 22.11.37, 23.x, 24.x before 24.11.16, 25.05.x before 25.05.11, 25.11.x before 25.11.05, 26.05.x before 26.05.01, and 26.11.x before 26.11.00 allows an authenticated staff user with the Reports module flag to read arbitrary data from the Koha application database via the Filter URL parameter when the Criteria parameter matches /branchcode/. The vulnerable sink in sub calculate concatenates the unmodified Filter request parameter directly into a LIKE clause of the auxiliary $strsth2 statement and executes it via DBI without bound parameters: my $f = @$filters[0]; $f =~ s/\*/%/g; $strsth2 .= " AND $column LIKE '$f' "; This enables error-based SQL injection (e.g., via EXTRACTVALUE) and full read access to sensitive tables including borrowers (password hashes, 2FA secrets, PII), borrower_password_recovery, api_keys, and sessions. Proof of concept (error-based, single request): GET /cgi-bin/koha/reports/catalogue_out.pl?do_it=1&output=screen&Limit=10&Criteria=branchcode&Filter=x'+AND+EXTRACTVALUE(1,CONCAT(0x7e,VERSION(),0x7c,USER(),0x7c,DATABASE(),0x7e))--+- Cookie: CGISESSID=<LIBRARIAN_SESSION> The response body contains the DBI exception leaking the MariaDB version, database user, client IP, and database name, after which arbitrary data can be paged out using LIMIT n,1 / SUBSTRING(...). The vulnerable sink was introduced in commit 6bb77ae3e4 (2008-07-09); CVE-2015-4633 patched the same class in sibling files but did not generalise the fix to reports/catalogue_out.pl. Fixed in Koha 22.11.38, 24.11.16, 25.05.11, 25.11.05, 26.05.01, and 26.11.00 by replacing the raw concatenation with a parameterised placeholder.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 7.6)

cvss2

Base Score: 7.5

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:N/A:P

cvss3

Base Score: 7.6

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L

cvss4

Base Score: 5.6

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:X/V:C/RE:X/U:Amber

Impact Score

4.7

Exploitability

2.8

REFERENCES

CVE-2026-5513

SUMMARY

The Online Scheduling and Appointment Booking System – Bookly plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'bookly-customer-full-name' cookie in versions up to, and including, 27.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. Exploitation requires 'Remember personal information in cookies' setting to be enabled (disabled by default).

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 7.2)

cvss3

Base Score: 7.2

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

Impact Score

2.7

Exploitability

3.9

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…