Grants Plus
Company Details
Linkedin ID:
grants-plus
Website:
Employees number:
43
Number of followers:
5,857
NAICS:
561499
Industry Type:
Homepage:
grantsplus.com
IP Addresses:
0
Company ID:
GRA_1546341
Scan Status:
In-progress
Grants Plus Company CyberSecurity Posture
grantsplus.com
Founded in 2007, Grants Plus is the most trusted and experienced professional grant seeking firm in the country. We've partnered with experienced nonprofit leaders to secure over $350 million in grant funding from private, corporate, and government funders. Our team of professional grant writers and grant seeking experts can help: - Grow your foundation grants strategically - Increase your grant seeking capacity - Maximize your win rate on government grants - Expand your funding opportunities through grant research Learn how we can help your organization reach its grants goals at https://grantsplus.com/services/
Grants Plus A.I CyberSecurity Scoring
Grants Plus Risk Score (AI oriented)Between 750 and 799
Grants Plus
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Grants Plus Global Score (TPRM)XXXX
Grants Plus
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Grants Plus Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
Grants Plus Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Grants Plus
Incidents vs Fundraising Industry Average (This Year)
No incidents recorded for Grants Plus in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Grants Plus in 2025.
Incident Types Grants Plus vs Fundraising Industry Avg (This Year)
No incidents recorded for Grants Plus in 2025.
Incident History — Grants Plus (X = Date, Y = Severity)
Grants Plus cyber incidents detection timeline including parent company and subsidiaries
Grants Plus Company Subsidiaries
Founded in 2007, Grants Plus is the most trusted and experienced professional grant seeking firm in the country. We've partnered with experienced nonprofit leaders to secure over $350 million in grant funding from private, corporate, and government funders. Our team of professional grant writers and grant seeking experts can help: - Grow your foundation grants strategically - Increase your grant seeking capacity - Maximize your win rate on government grants - Expand your funding opportunities through grant research Learn how we can help your organization reach its grants goals at https://grantsplus.com/services/
Loading...
Grants Plus Similar Companies
Siegel Marketing Group
With more than 18 years of experience in marketing for the non-profit community, Siegel Marketing Group, Inc. (SMG) brings a comprehensive range of services to your organization. We understand that donors and members are the lifeline of your organization. Our unique expertise reaches your donors an
The JFM Group LLC
The JFM Group LLC, (JFM) a New York-based company, provides overall strategic planning, individualized fundraising campaigns, event and production management to not for profit organizations locally, nationally, and globally. Our team, led by Joan F. Morgan, is a unique combination of creative thi
Enthuse is transforming digital fundraising by putting charities first. Enthuse is a donations, event registration and fundraising platform that has helped thousands of charities raise millions. Our solutions are customised under a cause’s own brand and we put charities in control of their data. Thi
Army Heritage Center Foundation
The Army Heritage Center Foundation is a not-for-profit 501(c) (3) that leads a public-private effort to grow and enhance the campus and programs of the U.S. Army Heritage and Education Center (USAHEC). Authorized by the Secretary of the Army in 2001, the project seeks to more fully communicate USA
Grandstand Sports & Memorabilia
Grandstand Sports & Memorabilia Inc. is a domestic and international provider of hand signed authentic sports memorabilia. Since it's inception the company has held a domestic and international presence in both retail and wholesale markets. The corporate office is located in New York City. Aside fro
Generous Change
We're obsessed with providing practical workshops and coaching for fundraisers at all levels to know specifically how to get in the door with donors, have a meaningful conversation, follow up, thank meaningfully and memorably...the tactical tools to truly raise money. All the things we wish we would
.png)
Grants Plus CyberSecurity News
December 05, 2025 08:00 AM
Healthcare cybersecurity bill promises increased guidance, grants for industry
A group of senators reintroduced a new healthcare cybersecurity bill that would update the way the HHS handles cybersecurity events in...
November 14, 2025 08:00 AM
Kim Kardashian Is Richer Than Ever After New Skims Funding. Plus: Use Negative Self-Talk To Your Advantage
Welcome to this week's ForbesWomen newsletter, which every Thursday brings news about the world's top female entrepreneurs,...
October 31, 2025 07:00 AM
Why your company’s cybersecurity strategy is probably wrong – and how to fix it
Why your company's cybersecurity strategy is probably wrong – and how to fix it - IT News Africa | Business Technology, Telecoms and Startup...
September 30, 2025 07:00 AM
CISA kills agreement with nonprofit that runs MS-ISAC
The US Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday will cut its ties to - and funding for - the Center for Internet...
September 29, 2025 07:00 AM
Cyber security consultancy support, plus assessment and certification
The threat to space is real and coming increasingly closer to the UK space industry as attempted breaches have demonstrated.
September 24, 2025 07:00 AM
Governor Hochul announces $13.9M cybersecurity grants for local governments
According to a release, Governor Hochul has announced the availability of $13.9 million in cybersecurity grants for local governments in New...
September 04, 2025 07:00 AM
Congress tosses lifeline to cyber intel sharing, grants
US security leaders have urged lawmakers to reauthorize two key pieces of cyber legislation, including one that facilitates threat-intel...
August 29, 2025 07:00 AM
UWF receives $32.5 million Triumph grant for cybersecurity, computational research
The University of West Florida will expand its research capabilities and establish a new computational intelligence center with the funding.
August 26, 2025 07:00 AM
Cybersecurity for K-12 Teachers
Are you a Kindergarten through 12th grade (K-12) teacher or educator looking to incorporate cybersecurity into your lesson plans?
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Grants Plus CyberSecurity History Information
Official Website of Grants Plus
The official website of Grants Plus is http://www.grantsplus.com.
Grants Plus’s AI-Generated Cybersecurity Score
According to Rankiteo, Grants Plus’s AI-generated cybersecurity score is 757, reflecting their Fair security posture.
How many security badges does Grants Plus’ have ?
According to Rankiteo, Grants Plus currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Grants Plus have SOC 2 Type 1 certification ?
According to Rankiteo, Grants Plus is not certified under SOC 2 Type 1.
Does Grants Plus have SOC 2 Type 2 certification ?
According to Rankiteo, Grants Plus does not hold a SOC 2 Type 2 certification.
Does Grants Plus comply with GDPR ?
According to Rankiteo, Grants Plus is not listed as GDPR compliant.
Does Grants Plus have PCI DSS certification ?
According to Rankiteo, Grants Plus does not currently maintain PCI DSS compliance.
Does Grants Plus comply with HIPAA ?
According to Rankiteo, Grants Plus is not compliant with HIPAA regulations.
Does Grants Plus have ISO 27001 certification ?
According to Rankiteo,Grants Plus is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Grants Plus
Grants Plus operates primarily in the Fundraising industry.
Number of Employees at Grants Plus
Grants Plus employs approximately 43 people worldwide.
Subsidiaries Owned by Grants Plus
Grants Plus presently has no subsidiaries across any sectors.
Grants Plus’s LinkedIn Followers
Grants Plus’s official LinkedIn profile has approximately 5,857 followers.
NAICS Classification of Grants Plus
Grants Plus is classified under the NAICS code 561499, which corresponds to All Other Business Support Services.
Grants Plus’s Presence on Crunchbase
No, Grants Plus does not have a profile on Crunchbase.
Grants Plus’s Presence on LinkedIn
Yes, Grants Plus maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/grants-plus.
Cybersecurity Incidents Involving Grants Plus
As of December 21, 2025, Rankiteo reports that Grants Plus has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
Grants Plus has an estimated 1,146 peer or competitor companies worldwide.
Grants Plus CyberSecurity History Information
How many cyber incidents has Grants Plus faced ?
Total Incidents: According to Rankiteo, Grants Plus has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at Grants Plus ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
Versa SASE Client for Windows versions released between 7.8.7 and 7.9.4 contain a local privilege escalation vulnerability in the audit log export functionality. The client communicates user-controlled file paths to a privileged service, which performs file system operations without impersonating the requesting user. Due to improper privilege handling and a time-of-check time-of-use race condition combined with symbolic link and mount point manipulation, a local authenticated attacker can coerce the service into deleting arbitrary directories with SYSTEM privileges. This can be exploited to delete protected system folders such as C:\\Config.msi and subsequently achieve execution as NT AUTHORITY\\SYSTEM via MSI rollback techniques.
Risk Information
cvss4
Base: 8.5
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
The WP JobHunt plugin for WordPress, used by the JobCareer theme, is vulnerable to unauthorized modification of data due to a missing capability check on the 'cs_update_application_status_callback' function in all versions up to, and including, 7.7. This makes it possible for authenticated attackers, with Candidate-level access and above, to inject cross-site scripting into the 'status' parameter of applied jobs for any user.
Risk Information
cvss3
Base: 7.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L
Description
The WP JobHunt plugin for WordPress, used by the JobCareer theme, is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 7.7 via the 'cs_update_application_status_callback' due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with Candidate-level access and above, to send a site-generated email with injected HTML to any user.
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Description
The FiboSearch – Ajax Search for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's `thegem_te_search` shortcode in all versions up to, and including, 1.32.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This vulnerability requires TheGem theme (premium) to be installed with Header Builder mode enabled, and the FiboSearch "Replace search bars" option enabled for TheGem integration.
Risk Information
cvss3
Base: 5.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
References
- https://plugins.trac.wordpress.org/browser/ajax-search-for-woocommerce/tags/1.32.0/partials/themes/thegem-elementor.php#L104
- https://plugins.trac.wordpress.org/browser/ajax-search-for-woocommerce/tags/1.32.0/partials/themes/thegem-elementor.php#L94
- https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3420841%40ajax-search-for-woocommerce%2Ftrunk&old=3398612%40ajax-search-for-woocommerce%2Ftrunk&sfp_email=&sfph_mail=#file136
- https://wordpress.org/plugins/ajax-search-for-woocommerce
- https://www.wordfence.com/threat-intel/vulnerabilities/id/8149103e-105d-401d-8a15-b07d131baaac?source=cve
Description
The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.11.0 via the ajax_get_members function. This is due to the use of a predictable low-entropy token (5 hex characters derived from md5 of post ID) to identify member directories and insufficient authorization checks on the unauthenticated AJAX endpoint. This makes it possible for unauthenticated attackers to extract sensitive data including usernames, display names, user roles (including administrator accounts), profile URLs, and user IDs by enumerating predictable directory_id values or brute-forcing the small 16^5 token space.
Risk Information
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
References
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/includes/class-functions.php#L41
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/includes/core/class-ajax-common.php#L61
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/includes/core/class-member-directory.php#L205
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/includes/core/class-member-directory.php#L2795
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/templates/members.php#L26
- https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3421362%40ultimate-member%2Ftrunk&old=3408617%40ultimate-member%2Ftrunk&sfp_email=&sfph_mail=
- https://www.wordfence.com/threat-intel/vulnerabilities/id/61337d2d-d15a-45f2-b730-fc034eb3cd31?source=cve
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=grants-plus' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
