What is the official website of Connect at Publicis Media ?

The official website of Connect at Publicis Media is https://www.publicisgroupe.com/en/services/services-publicis-media-en.

What is Connect at Publicis Media's cybersecurity risk score?

Connect at Publicis Media has an AI-generated cybersecurity risk score of 753 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Connect at Publicis Media experienced?

According to Rankiteo, Connect at Publicis Media currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Connect at Publicis Media been affected by any supply chain cyber incidents ?

According to Rankiteo, Connect at Publicis Media has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Connect at Publicis Media have SOC 2 Type 1 certification ?

According to Rankiteo, Connect at Publicis Media is not certified under SOC 2 Type 1.

Does Connect at Publicis Media have SOC 2 Type 2 certification ?

According to Rankiteo, Connect at Publicis Media does not hold a SOC 2 Type 2 certification.

Does Connect at Publicis Media comply with GDPR ?

According to Rankiteo, Connect at Publicis Media is not listed as GDPR compliant.

Does Connect at Publicis Media have PCI DSS certification ?

According to Rankiteo, Connect at Publicis Media does not currently maintain PCI DSS compliance.

Does Connect at Publicis Media comply with HIPAA ?

According to Rankiteo, Connect at Publicis Media is not compliant with HIPAA regulations.

Does Connect at Publicis Media have ISO 27001 certification ?

According to Rankiteo,Connect at Publicis Media is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Connect at Publicis Media operate in ?

Connect at Publicis Media operates primarily in the Advertising Services industry.

How many employees does Connect at Publicis Media have ?

Connect at Publicis Media employs approximately 43 people worldwide.

Does Connect at Publicis Media own any subsidiaries ?

Connect at Publicis Media presently has no subsidiaries across any sectors.

How many LinkedIn followers does Connect at Publicis Media have ?

Connect at Publicis Media's official LinkedIn profile has approximately 160 followers.

What is the NAICS classification code for Connect at Publicis Media ?

Connect at Publicis Media is classified under the NAICS code 541613, which corresponds to Marketing Consulting Services.

Does Connect at Publicis Media have a Crunchbase profile ?

No, Connect at Publicis Media does not have a profile on Crunchbase.

Does Connect at Publicis Media have a LinkedIn profile ?

Yes, Connect at Publicis Media maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/connect-at-publicis-media.

How many cybersecurity incidents has Connect at Publicis Media experienced ?

As of June 14, 2026, Rankiteo reports that Connect at Publicis Media has experienced 2 cybersecurity incidents.

How many peer or competitor companies does Connect at Publicis Media have ?

Connect at Publicis Media has an estimated 33,275 peer or competitor companies worldwide.

What types of cybersecurity incidents has Connect at Publicis Media faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Breach.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

CPM

Boost Score +25 with badge (5 left)

753

/1000

Fair

778

/1000

Fair

Connect at Publicis Media Vendor Cyber Rating & Cyber Score

publicisgroupe.com

Add Your Compliance Badge

Born in a time of media disruption, Connect is an agency liberated from legacy and old team models. Our purpose-built teams are designed for ambitious brands who demand category expertise and startup speed. Architecting from scratch with client specialization in mind, clients get our agility, speed and collaborative approach backed by the scale and integrated power Publicis Media. We rise to the challenge of clients with complex retail or portfolio ecosystems, regulated categories or clients who must win in B2B and B2C. Whether challengers in their category or leading brands with a challenger mindset, our bespoke approach dials up the integration of audience data, what’s next in media, and leading-edge technology with specialist

CPM A.I CyberSecurity Scoring

Scoring History

CPM

Connect at Publicis Media CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Connect at Publicis...

Breach

100

6/2011

EPS153827123

Connect at Publicis...

Breach

4/2011

EPS458072625

Loading…

A.I.

CPM Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for CPM

Incidents vs Advertising Services Industry Avg (This Year)

No incidents recorded for Connect at Publicis Media in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Connect at Publicis Media in 2026.

Incident Types CPM vs Advertising Services Industry Avg (This Year)

No incidents recorded for Connect at Publicis Media in 2026.

Incident History - CPM (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Connect at Publicis Media Subsidiaries

CPM

Advertising Services

Website: https://www.publicisgroupe.com/en/services/services-publicis-media-en

Company Size: 43

Publicis GroupeAdvertising Services

Leo BurnettAdvertising Services

MSL (Global)Public Relations and Communications Services

PublicisLiveEvents Services

JKLPublic Relations and Communications Services

Women's Forum for the Economy & SocietyInternational Affairs

Espalhe MSLAdvertising Services

MSL IndiaPublic Relations and Communications Services

MSL UKAdvertising Services

MSL UK Employee ExperiencePublic Relations and Communications Services

Publicis ConsultantsPublic Relations and Communications Services

20:20 MEDIAPublic Relations and Communications Services

MSL Group CanadaPublic Relations and Communications Services

MSLGROUP Technology PracticePublic Relations and Communications Services

Capital MSL Middle EastPublic Relations and Communications Services

Winner & AssociatesPublic Relations and Communications Services

MSLGROUP Corporate & Brand Citizenship/PurPlePublic Relations and Communications Services

MSLGROUP ChinaPublic Relations and Communications Services

MSL WarsawPublic Relations and Communications Services

MSLGROUP Financial Communications PracticePublic Relations and Communications Services

Capital MSLPublic Relations and Communications Services

ECA2 SHOW DESIGN & PRODUCTIONEntertainment Providers

20:20 MSLPublic Relations and Communications Services

Digitas North AmericaAdvertising Services

(m)PHASIZEAdvertising Services

RokkanAdvertising Services

PDI, Inc.Pharmaceutical Manufacturing

Interpace BiosciencesBiotechnology Research

Third Horizon ConsultingBusiness Consulting and Services

Saatchi & SaatchiAdvertising Services

Team OneAdvertising Services

Saatchi & Saatchi (We Are Saatchi)Advertising Services

Saatchi & Saatchi IndiaAdvertising Services

F/Nazca Saatchi & SaatchiAdvertising Services

Saatchi & Saatchi XAdvertising Services

Saatchi & Saatchi SingaporeAdvertising Services

Saatchi & Saatchi SynergizeAdvertising Services

Sapient Public Sector | Now Publicis SapientBusiness Consulting and Services

EpsilonAdvertising Services

Epsilon BrasilAdvertising Services

Epsilon EMEAAdvertising Services

Epsilon IndiaAdvertising Services

Epsilon LATAMAdvertising Services

Epsilon APACAdvertising Services

Optimedia USAdvertising Services

PublicisdrugstoreRetail

Publicis Health MediaAdvertising Services

Performics UKAdvertising Services

Balance InternetTechnology, Information and Internet

Kaplan Thaler ProductionsAdvertising Services

GroupeConnectAdvertising Services

LeSHOPAdvertising Services

PROXIMEDIA FRANCETechnology, Information and Internet

Influential AustraliaMarketing Services

Team One Exhibits, Inc.Events Services

Prodigious WorldwideAdvertising Services

Prodigious SoundsAdvertising Services

StarcomAdvertising Services

Starcom AustraliaAdvertising Services

Sapient Global MarketsBusiness Consulting and Services

Saatchi & Saatchi UKAdvertising Services

ZenithAdvertising Services

Digitas UKAdvertising Services

FallonAdvertising Services

Publicis ProductionAdvertising Services

Arc WorldwideAdvertising Services

BBH GlobalAdvertising Services

BBH LondonAdvertising Services

BBH USAAdvertising Services

Publicis Groupe UKAdvertising Services

VivaKiAdvertising Services

RUNAdvertising Services

Spark FoundryAdvertising Services

Spark Foundry AustraliaAdvertising Services

Publicis Re:SourcesAdvertising Services

North StrategicPublic Relations and Communications Services

Publicis Groupe SingaporeAdvertising Services

Loading…

Connect at Publicis Media Similar Companies

Clear Channel Europe

clearchanneleurope.com

Clear Channel Europe is a division of leading global Out of Home media company, Clear Channel Outdoor Holdings, Inc. (NYSE: CCO). The Clear Channel Europe portfolio spans 14 markets with 260,000 advertising panels. Clear Channel Europe has 2,600 dedicated employees. Our Mission is To Create the future of media. Transforming our estate, to the benefit of all our stakeholders, through data-driven innovations and infrastructure. Our Purpose is to provide both A Platform for Brands & A Platform for Good. Delivering advertisers’ media objectives whilst having a positive impact on the world around us.

Publicis Groupe

cb publicisgroupe.com

Founded in 1926 by Marcel Bleustein-Blanchet, today Publicis Groupe is the largest communications group in the world and a leader in marketing, communication, and digital business transformation, led by Arthur Sadoun, the third CEO in its history. Publicis Groupe is positioned at every step of the value chain, from consulting to execution, combining marketing transformation and digital business transformation. Publicis Groupe is a privileged partner in its clients’ transformation to enhance personalisation at scale. The Groupe relies on ten expertise concentrated within four main activities: Communication, Media, Data and Technology. Through a unified and fluid organisation, its clients have a facilitated access to all its expertise in every market. Present in over 100 countries, Publicis Groupe employs around 108,000 professionals. Website: www.publicisgroupe.com X: @PublicisGroupe Instagram: @publicisgroupe YouTube: http://www.youtube.com/publicisgroupe Facebook: http://www.facebook.com/publicisgroupe

Clinic

clinic.co.uk

Clinic is an independent creative agency. We create bold ideas, and craft them beautifully, to get people thinking, believing and doing. All of our experience goes into what we do today, and although our world’s constantly changing, the endpoint is still people and their experience, no matter what the context or media. Born a Virgin company, the core principles of challenging the norm and putting people front and centre have served us well over the years. And they’ve served the many brands we’ve worked with even better. What does that mean in the real world? Launching products & services, increasing subscriber numbers, helping multi-faceted businesses feel human and showing brands how to be themselves. Whatever we’re doing, the core is understanding people and solving problems creatively. It’s what we’ve done for over 30 years, and it still drives us forward. We call it being something else.

Epsilon

epsilon.com

Epsilon is a global data, technology and services company that powers the marketing and advertising ecosystem. The world’s leading brands use Epsilon to harmonize consumer engagement across their paid, owned and earned channels, leveraging capabilities that include data, identity resolution, customer data platforms, clean rooms, digital media, retail media, site personalization, direct mail, loyalty, email marketing and measurement. By applying artificial intelligence against privacy-centric consumer recognition–embedded in data-enriched analytic, marketing and media solutions–Epsilon allows marketers to bridge the divide between marketing and advertising technology, engaging consumers with 1 View, 1 Vision and 1 Voice. 1 View of their universe of potential buyers. 1 Vision for engaging each individual. And 1 Voice to harmonize engagement across paid, owned and earned channels. Follow us on Instagram: @epsilonmarketing

dentsu

bit.ly

We are dentsu. We team together to help brands predict and plan for disruptive future opportunities and create new paths to growth in the sustainable economy. We know people better than anyone else and we use those insights to connect brand, content, commerce and experience, underpinned by modern creativity. We are the network designed for what’s next.

Havas

havas.com

Founded in 1835 in Paris, Havas is one of the world’s largest global communications groups, with nearly 23,000 people in over 100 countries. With the ambition to help brands unlock Growth, Powered by Desire, Havas brings together creativity, media, technology and production capabilities to build strong, desirable brands that people genuinely want to engage with. Its integrated model is supported by Converged.AI, the Group’s operating system that unifies data, technology and AI to deliver optimized, scalable marketing solutions across the full customer journey. AI-driven, fueled by human ingenuity, and grounded in the belief that desire drives both brand performance and business outcomes, Havas teams collaborate within Havas Villages worldwide to cultivate reputation, relevance and long‑term preference for clients. Havas is equally committed to its people, fostering inclusive, responsible and inspiring workplaces where talent can thrive, because desire also starts from within.

Quad

cb quad.com

Quad (NYSE: QUAD) is a global marketing experience company that helps brands make direct consumer connections, from household to in-store to online. Supported by state-of-the-art technology and data-driven intelligence, Quad uses its suite of media, creative and production solutions to streamline the complexities of marketing and remove friction from wherever it occurs in the marketing journey. Quad tailors its uniquely flexible, scalable and connected solutions to clients’ objectives, driving cost efficiencies, improving speed to market, strengthening marketing effectiveness, and delivering value on client investments. Quad employs approximately 13,000 people in 14 countries and serves approximately 2,700 clients including industry leading blue-chip companies that serve both businesses and consumers in multiple industry verticals, with a particular focus on commerce, including retail, consumer packaged goods, and direct-to-consumer; financial services; and health. Quad is ranked as the 14th largest agency company in the U.S. by Ad Age (2023), and the second-largest commercial printer in North America, according to Printing Impressions (2023). For more information about Quad, including its commitment to ongoing innovation, culture and sustainable impact, visit quad.com.

$TBWA\Worldwide$

TBWA\Worldwide

tbwa.com

TBWA is The Disruption Company®. We are a Collective of creative minds with an unlimited creative canvas. We create brand platforms that defy convention and compete with culture. Thanks to our trademarked Disruption® methodology, we build the world’s strongest brands. Brands that own an unfair share of the future. Named one of the World's Most Innovative Companies by Fast Company in 2025, 2023, 2022, 2021, 2020 and 2019, TBWA is also Adweek's 2024, 2022, 2021 and 2018 Global Agency of the Year and AdAge’s A-List 2022 Network of the Year. Our Collective has 11,000+ creative minds in over 40 countries, and also includes brands such as Auditoire, Digital Arts Network (DAN), eg+ worldwide, GMR, TBWA\Media Arts Lab, TBWA\Health Collective and TRO. Global clients include adidas, Apple, Gatorade, Henkel, Hilton Hotels, McDonald's, Nissan and Singapore Airlines. TBWA is part of Omnicom Group (NYSE: OMC).

VML

vml.com

VML is a global powerhouse born from the unification of Wunderman Thompson and VMLY&R — two of the world's most powerful and accomplished creative agencies with complementary capabilities and geographic strengths. We have an industry-unique opportunity to provide our client partners with a fully integrated offering across brand experience, customer experience and commerce practices — powered by deep data and technology experience. For more information, visit www.vml.com.

Loading…

NEWS

Connect at Publicis Media CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

March 31, 2026 11:41 AM

Publicis Groupe Puts Kekst CNC’s AI And Cyber Counsel Center Stage

Kekst CNC, a Publicis Groupe subsidiary, has appointed Lyndsey Estin as Co-CEO to lead U.S. operations. The move highlights Publicis...

Read Article

February 12, 2026 08:00 AM

Publicis weds creator, sports marketing for new Influential Sports unit

The move is designed to help brands connect with sports fans at scale and measure creator-driven programs with greater speed and accuracy.

Read Article

December 08, 2025 08:00 AM

Vodafone appoints Publicis as new brand creative agency

Vodafone Group has appointed creative agency Publicis to support a transformation of its approach to creative and production.

Read Article

November 25, 2025 08:00 AM

Genius Sports Partners with Publicis Sports to Reimagine Future of Fan Engagement

NEW YORK & LONDON, November 25, 2025--Genius Sports Limited ("Genius Sports") (NYSE:GENI) today announced a global partnership with Publicis...

Read Article

September 24, 2025 07:00 AM

Omantel and Publicis Groupe Launch Oman’s First AI-Powered AdTech Ecosystem

The launch reinforces Omantel's role as a digital enabler, investing in emerging technologies such as cloud computing, AI, cybersecurity,...

Read Article

May 21, 2025 07:00 AM

Exclusive | Publicis Deepens Influencer Marketing Push With Deal for Captiv8

Groupe said it is buying Captiv8, a platform that connects influencers and brands, in a deal that steps up its push into influencer-marketing services.

Read Article

May 21, 2025 07:00 AM

Publicis Groupe acquires Captiv8 to build the world’s most powerful connected influencer platform

Captiv8 is the largest influencer technology marketing platform in the world, covering 95% of influencers with 5000+ followers.

Read Article

April 30, 2025 07:00 AM

Publicis acquires Adopt to strengthen connection to sports culture

The four-year-old upstart founded by Nike veterans has worked with brands and athletes including Lululemon and Anthony Edwards.

Read Article

March 10, 2025 07:00 AM

Publicis Groupe to Acquire Lotame

Publicis Groupe [Euronext Paris FR0000130577, CAC 40] today announced that it has entered into an agreement to acquire Lotame, the world's leading independent...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-12175

SUMMARY

A vulnerability was detected in CodeAstro Student Attendance Management System 1.0. Impacted is an unknown function of the file /attendance-php/Admin/createStudents.php. Performing a manipulation of the argument admissionNumber results in sql injection. Remote exploitation of the attack is possible. The exploit is now public and may be used.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 4.7)

cvss2

Base Score: 5.8

Complexity: LOW

AV:N/AC:L/Au:M/C:P/I:P/A:P

cvss3

Base Score: 4.7

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 2.0

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

1.2

REFERENCES

CVE-2026-12174

SUMMARY

A security vulnerability has been detected in D-Link DCS-935L 1.10.01. This issue affects the function snprintf of the file /web/cgi-bin/greece/rhea of the component HTTP Handler. Such manipulation of the argument data leads to format string. The attack may be launched remotely. The exploit has been disclosed publicly and may be used.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 8.8)

cvss2

Base Score: 9.0

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:C/A:C

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 7.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

2.8

REFERENCES

CVE-2026-12183

SUMMARY

Nefteprodukttekhnika BUK TS-G Gas Station Automation System 2.9.1 through 2.10.2 on Linux contains an Improper Authentication vulnerability (CWE-287) in the system configuration module. The /php/ajax-login.php endpoint returns userid=1 (administrator) in response to any HTTP POST request that supplies arbitrary credentials (e.g., action=dologin&login=<any_value>&pwd=<any_value>), and subsequent privileged endpoints under /php/ajax-main.php and /modules/* do not validate a server-side session. A remote unauthenticated attacker can invoke any administrative action exposed by the configuration module, including reading and modifying user rules, fuel tank gauges, fuel dispensers, relays, cash registers, bank terminals, fuel cards, price and customer displays, cash collection, and pricing rules.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 9.8)

cvss3

Base Score: 9.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 9.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

3.9

REFERENCES

CVE-2026-6428

SUMMARY

SQL Injection in reports/catalogue_out.pl in Koha Community Koha through 22.11.37, 23.x, 24.x before 24.11.16, 25.05.x before 25.05.11, 25.11.x before 25.11.05, 26.05.x before 26.05.01, and 26.11.x before 26.11.00 allows an authenticated staff user with the Reports module flag to read arbitrary data from the Koha application database via the Filter URL parameter when the Criteria parameter matches /branchcode/. The vulnerable sink in sub calculate concatenates the unmodified Filter request parameter directly into a LIKE clause of the auxiliary $strsth2 statement and executes it via DBI without bound parameters: my $f = @$filters[0]; $f =~ s/\*/%/g; $strsth2 .= " AND $column LIKE '$f' "; This enables error-based SQL injection (e.g., via EXTRACTVALUE) and full read access to sensitive tables including borrowers (password hashes, 2FA secrets, PII), borrower_password_recovery, api_keys, and sessions. Proof of concept (error-based, single request): GET /cgi-bin/koha/reports/catalogue_out.pl?do_it=1&output=screen&Limit=10&Criteria=branchcode&Filter=x'+AND+EXTRACTVALUE(1,CONCAT(0x7e,VERSION(),0x7c,USER(),0x7c,DATABASE(),0x7e))--+- Cookie: CGISESSID=<LIBRARIAN_SESSION> The response body contains the DBI exception leaking the MariaDB version, database user, client IP, and database name, after which arbitrary data can be paged out using LIMIT n,1 / SUBSTRING(...). The vulnerable sink was introduced in commit 6bb77ae3e4 (2008-07-09); CVE-2015-4633 patched the same class in sibling files but did not generalise the fix to reports/catalogue_out.pl. Fixed in Koha 22.11.38, 24.11.16, 25.05.11, 25.11.05, 26.05.01, and 26.11.00 by replacing the raw concatenation with a parameterised placeholder.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 7.6)

cvss2

Base Score: 7.5

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:N/A:P

cvss3

Base Score: 7.6

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L

cvss4

Base Score: 5.6

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:X/V:C/RE:X/U:Amber

Impact Score

4.7

Exploitability

2.8

REFERENCES

CVE-2026-5513

SUMMARY

The Online Scheduling and Appointment Booking System – Bookly plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'bookly-customer-full-name' cookie in versions up to, and including, 27.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. Exploitation requires 'Remember personal information in cookies' setting to be enabled (disabled by default).

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 7.2)

cvss3

Base Score: 7.2

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

Impact Score

2.7

Exploitability

3.9

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…