ISO 27001 Certificate
SOC 1 Type I Certificate
SOC 2 Type II Certificate
PCI DSS
HIPAA
RGPD
Internal validation & live display
Multiple badges & continuous verification
Faster underwriting decisions

Enthuse Company CyberSecurity Posture

enthuse.com
ISOSOC2 Type 1SOC2 Type 2PCI DSSHIPAAGDPR

Enthuse is transforming digital fundraising by putting charities first. Enthuse is a donations, event registration and fundraising platform that has helped thousands of charities raise millions. Our solutions are customised under a cause’s own brand and we put charities in control of their data. This allows charities to build and nurture a loyal supporter base, raise more and ultimately have more impact. Founded in 2012 and headquartered in London, Enthuse is backed by socially responsible investors and was named “Most Committed Company to the Sector” at the National Fundraising Awards. See our careers page: https://enthuse.com/careers

Enthuse A.I CyberSecurity Scoring

AI scoreEnthuse Risk Score (AI oriented)

Between 750 and 799

https://images.rankiteo.com/companyimages/charitycheckout-co-uk.jpeg
Enthuse Fundraising
Updated:
  • Powered by our proprietary A.I cyber incident model
  • Insurance preferes TPRM score to calculate premium
globalscoreEnthuse Global Score (TPRM)

XXXX

https://images.rankiteo.com/companyimages/charitycheckout-co-uk.jpeg
Enthuse Fundraising
  • Instant access to detailed risk factors
  • Benchmark vs. industry & size peers
  • Vulnerabilities
  • Findings

Enthuse Company CyberSecurity News & History

Past Incidents
0
Attack Types
0
No data available
Ailogo

Enthuse Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

🔒
Incident Predictions locked
Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

🔒
A.I. Risk Score Predictions locked
Access Monitoring Plan
statics

Underwriter Stats for Enthuse

Incidents vs Fundraising Industry Average (This Year)

No incidents recorded for Enthuse in 2025.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Enthuse in 2025.

Incident Types Enthuse vs Fundraising Industry Avg (This Year)

No incidents recorded for Enthuse in 2025.

Incident History — Enthuse (X = Date, Y = Severity)

Enthuse cyber incidents detection timeline including parent company and subsidiaries

Enthuse Company Subsidiaries

SubsidiaryImage

Enthuse is transforming digital fundraising by putting charities first. Enthuse is a donations, event registration and fundraising platform that has helped thousands of charities raise millions. Our solutions are customised under a cause’s own brand and we put charities in control of their data. This allows charities to build and nurture a loyal supporter base, raise more and ultimately have more impact. Founded in 2012 and headquartered in London, Enthuse is backed by socially responsible investors and was named “Most Committed Company to the Sector” at the National Fundraising Awards. See our careers page: https://enthuse.com/careers

similarCompanies

Enthuse Similar Companies

Prenger Solutions Group
prengersolutions.com

Prenger Solutions Group uses technology to help nonprofits improve their fundraising and communications. In addition to its fundraising consulting services, PSG has built and launched three hit software products serving the nonprofit market. AskGenius is a powerful fundraising tool that helps non

Security Report Compare
OnPoint Data Strategy
onpointdatastrategy.com

OnPoint is ready to provide your clients look-alike and custom audiences to help you improve your direct mail and email fundraising acquisition programs. Our consumer database, OnPoint+, will provide our customers access to over 120 million U.S. Households with over 130 data points including demogra

Security Report Compare
Tibetan Aid Project
tibetanaidproject.org

Tibetan Aid Project works to rebuild, preserve, strengthen, and perpetuate Tibet’s cultural and spiritual heritage for the benefit of the Tibetan people and all humanity. Founded in 1969 by Tarthang Tulku, a high lama living in exile from Tibet, Tibetan Aid Project initially provided food, clothi

Security Report Compare
Resource Development Group
rdgfundraising.com

Resource Development Group (RDG) is an economic development fundraising consulting firm specifically focused on capital campaign management for economic development programming and initiatives. In addition to capital campaign management, we conduct feasibility studies; best practice research and imp

Security Report Compare
St. Joseph's Health Centre Foundation
supportstjoes.ca

St. Joseph’s Health Centre is known for taking care of families. Our team of medical experts provide care and support to our west-end Toronto neighbours who turn to their community hospital for medical help when they need it most. We know 80% of people will get all the care they ever need at their l

Security Report Compare
Phi Kappa Psi Foundation
pkpfoundation.org

The 501(c)(3) charitable arm of Phi Kappa Psi, the Phi Kappa Psi Foundation was established in 1914 to foster the development of leaders and promote academic excellence in higher education. Today, through contributions from generous donors, these priorities remain with the Foundation funding grants

Security Report Compare
newsone

Enthuse CyberSecurity News

December 18, 2024 08:00 AM
Why some programmers aren’t enthused by company hackathons

It's not possible to do something better in 24 hours than what you could do giving a week's worth of work to it,” one bioinformatics...

Read Article
October 20, 2023 07:00 AM
From Snooze to Enthuse: Making Security Awareness Training 'Sticky'

Most companies offer some kind of awareness training these days. But how much of those lessons are employees actually retaining?

Read Article
faq

Frequently Asked Questions

Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.

Enthuse CyberSecurity History Information

Official Website of Enthuse
Enthuse’s AI-Generated Cybersecurity Score

According to Rankiteo, Enthuse’s AI-generated cybersecurity score is 758, reflecting their Fair security posture.

How many security badges does Enthuse’ have ?

According to Rankiteo, Enthuse currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Does Enthuse have SOC 2 Type 1 certification ?

According to Rankiteo, Enthuse is not certified under SOC 2 Type 1.

Does Enthuse have SOC 2 Type 2 certification ?

According to Rankiteo, Enthuse does not hold a SOC 2 Type 2 certification.

Does Enthuse comply with GDPR ?

According to Rankiteo, Enthuse is not listed as GDPR compliant.

Does Enthuse have PCI DSS certification ?

According to Rankiteo, Enthuse does not currently maintain PCI DSS compliance.

Does Enthuse comply with HIPAA ?

According to Rankiteo, Enthuse is not compliant with HIPAA regulations.

Does Enthuse have ISO 27001 certification ?

According to Rankiteo,Enthuse is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Industry Classification of Enthuse

Enthuse operates primarily in the Fundraising industry.

Number of Employees at Enthuse

Enthuse employs approximately 91 people worldwide.

Subsidiaries Owned by Enthuse

Enthuse presently has no subsidiaries across any sectors.

Enthuse’s LinkedIn Followers

Enthuse’s official LinkedIn profile has approximately 4,398 followers.

NAICS Classification of Enthuse

Enthuse is classified under the NAICS code 561499, which corresponds to All Other Business Support Services.

Enthuse’s Presence on Crunchbase

Yes, Enthuse has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/charity-checkout.

Enthuse’s Presence on LinkedIn

Yes, Enthuse maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/charitycheckout-co-uk.

Cybersecurity Incidents Involving Enthuse

As of December 21, 2025, Rankiteo reports that Enthuse has not experienced any cybersecurity incidents.

Number of Peer and Competitor Companies

Enthuse has an estimated 1,146 peer or competitor companies worldwide.

Enthuse CyberSecurity History Information

How many cyber incidents has Enthuse faced ?

Total Incidents: According to Rankiteo, Enthuse has faced 0 incidents in the past.

What types of cybersecurity incidents have occurred at Enthuse ?

Incident Types: The types of cybersecurity incidents that have occurred include .

Incident Details

What are the most common types of attacks the company has faced ?

Additional Questions

cve

Latest Global CVEs (Not Company-Specific)

Description

Versa SASE Client for Windows versions released between 7.8.7 and 7.9.4 contain a local privilege escalation vulnerability in the audit log export functionality. The client communicates user-controlled file paths to a privileged service, which performs file system operations without impersonating the requesting user. Due to improper privilege handling and a time-of-check time-of-use race condition combined with symbolic link and mount point manipulation, a local authenticated attacker can coerce the service into deleting arbitrary directories with SYSTEM privileges. This can be exploited to delete protected system folders such as C:\\Config.msi and subsequently achieve execution as NT AUTHORITY\\SYSTEM via MSI rollback techniques.

Published
Date
2025-12-20
Updated
Date
2025-12-20
Risk Information
cvss4
Base: 8.5
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

The WP JobHunt plugin for WordPress, used by the JobCareer theme, is vulnerable to unauthorized modification of data due to a missing capability check on the 'cs_update_application_status_callback' function in all versions up to, and including, 7.7. This makes it possible for authenticated attackers, with Candidate-level access and above, to inject cross-site scripting into the 'status' parameter of applied jobs for any user.

Published
Date
2025-12-20
Updated
Date
2025-12-20
Risk Information
cvss3
Base: 7.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L
References
Description

The WP JobHunt plugin for WordPress, used by the JobCareer theme, is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 7.7 via the 'cs_update_application_status_callback' due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with Candidate-level access and above, to send a site-generated email with injected HTML to any user.

Published
Date
2025-12-20
Updated
Date
2025-12-20
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
References
Description

The FiboSearch – Ajax Search for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's `thegem_te_search` shortcode in all versions up to, and including, 1.32.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This vulnerability requires TheGem theme (premium) to be installed with Header Builder mode enabled, and the FiboSearch "Replace search bars" option enabled for TheGem integration.

Published
Date
2025-12-20
Updated
Date
2025-12-20
Risk Information
cvss3
Base: 5.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
References
Description

The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.11.0 via the ajax_get_members function. This is due to the use of a predictable low-entropy token (5 hex characters derived from md5 of post ID) to identify member directories and insufficient authorization checks on the unauthenticated AJAX endpoint. This makes it possible for unauthenticated attackers to extract sensitive data including usernames, display names, user roles (including administrator accounts), profile URLs, and user IDs by enumerating predictable directory_id values or brute-forcing the small 16^5 token space.

Published
Date
2025-12-20
Updated
Date
2025-12-20
Risk Information
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
References

Access Data Using Our API

SubsidiaryImage

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=charitycheckout-co-uk' -H 'apikey: YOUR_API_KEY_HERE'
Try It API Documentation rapidRapid

What Do We Measure ?

revertimgrevertimgrevertimgrevertimg
Incident
revertimgrevertimgrevertimgrevertimg
Finding
revertimgrevertimgrevertimgrevertimg
Grade
revertimgrevertimgrevertimgrevertimg
Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network Security

Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)

Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)

Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat Intelligence

Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Top LeftTop RightBottom LeftBottom Right
Rankiteo
By Rankiteo
View on G2.com
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
View latest reports → View all security reports →
Users Love Us Badge