What is the official website of Hyatt Regency ?

The official website of Hyatt Regency is http://www.regency.hyatt.com.

What is Hyatt Regency's cybersecurity risk score?

Hyatt Regency has an AI-generated cybersecurity risk score of 811 out of 1000, indicating a Good security posture according to Rankiteo's assessment.

How many security incidents has Hyatt Regency experienced?

According to Rankiteo, Hyatt Regency currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Hyatt Regency been affected by any supply chain cyber incidents ?

According to Rankiteo, Hyatt Regency has been affected by multiple supply chain cyber incidents. The affected supply chain sources and their corresponding incident IDs are: foh&boh (Incident ID: NORKFCFOHTACHYA1769001351) foh&boh (Incident ID: FOHNORHYAOMN1769001286) foh&boh (Incident ID: FOHKFCNORHYAOMN1769001235)

Does Hyatt Regency have SOC 2 Type 1 certification ?

According to Rankiteo, Hyatt Regency is not certified under SOC 2 Type 1.

Does Hyatt Regency have SOC 2 Type 2 certification ?

According to Rankiteo, Hyatt Regency does not hold a SOC 2 Type 2 certification.

Does Hyatt Regency comply with GDPR ?

According to Rankiteo, Hyatt Regency is not listed as GDPR compliant.

Does Hyatt Regency have PCI DSS certification ?

According to Rankiteo, Hyatt Regency does not currently maintain PCI DSS compliance.

Does Hyatt Regency comply with HIPAA ?

According to Rankiteo, Hyatt Regency is not compliant with HIPAA regulations.

Does Hyatt Regency have ISO 27001 certification ?

According to Rankiteo,Hyatt Regency is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Hyatt Regency operate in ?

Hyatt Regency operates primarily in the Hospitality industry.

How many employees does Hyatt Regency have ?

Hyatt Regency employs approximately 18,496 people worldwide.

Does Hyatt Regency own any subsidiaries ?

Hyatt Regency presently has no subsidiaries across any sectors.

How many LinkedIn followers does Hyatt Regency have ?

Hyatt Regency's official LinkedIn profile has approximately 609,551 followers.

What is the NAICS classification code for Hyatt Regency ?

Hyatt Regency is classified under the NAICS code 7211, which corresponds to Traveler Accommodation.

Does Hyatt Regency have a Crunchbase profile ?

No, Hyatt Regency does not have a profile on Crunchbase.

Does Hyatt Regency have a LinkedIn profile ?

Yes, Hyatt Regency maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/hyatt-regency.

How many cybersecurity incidents has Hyatt Regency experienced ?

As of June 14, 2026, Rankiteo reports that Hyatt Regency has experienced 9 cybersecurity incidents.

How many peer or competitor companies does Hyatt Regency have ?

Hyatt Regency has an estimated 14,277 peer or competitor companies worldwide.

What types of cybersecurity incidents has Hyatt Regency faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Breach and Ransomware.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Hyatt Regency

Boost Score +25 with badge (5 left)

811

/1000

Good

836

/1000

Good

Hyatt Regency Vendor Cyber Rating & Cyber Score

hyatt.com

Add Your Compliance Badge

Welcome to Hyatt Regency hotels, where connections flow seamlessly whether you’re traveling for business or leisure. With more than 150 hotels in over 30 countries, Hyatt Regency is a welcome place for convention goers, business travelers, and leisure seekers alike. Find yourself surrounded by enthusiastic service, eager to make sure all your needs are met. Because no detail goes unnoticed here. Our worldwide hotels are conveniently located in urban, suburban, airport, convention, and vacation destinations.

Hyatt Regency A.I CyberSecurity Scoring

Scoring History

Hyatt Regency

Hyatt Regency CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Hyatt

Breach

2/2025

foh&boh

NORKFCFOHTACHYA...

Hyatt

Breach

2/2025

foh&boh

FOHNORHYAOMN176...

HYATT Hotels

Breach

2/2025

foh&boh

FOHKFCNORHYAOMN...

Hyatt

Ransomware

100

1/2025

HYA1768842036

Hyatt

Ransomware

100

6/2021

HYAHIL176944683...

Hyatt Regency

Breach

3/2017

HYA456072525

Hyatt Regency

Ransomware

1/2016

HYA1348522

Hyatt Regency

Breach

8/2015

HYA550072525

Hyatt

Ransomware

100

6/2015

HYA1768948645

Loading…

A.I.

Hyatt Regency Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Hyatt Regency

Incidents vs Hospitality Industry Avg (This Year)

No incidents recorded for Hyatt Regency in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Hyatt Regency in 2026.

Incident Types Hyatt Regency vs Hospitality Industry Avg (This Year)

No incidents recorded for Hyatt Regency in 2026.

Incident History - Hyatt Regency (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Hyatt Regency Subsidiaries

Hyatt Regency

Hospitality

Website: http://www.regency.hyatt.com

Company Size: 10,001+ employees

HyattHospitality

Grand HyattHospitality

Grand Hyatt IstanbulOtelcilik

Park HyattHospitality

Park Hyatt Istanbul - Maçka PalasOtelcilik

Alila HotelsHospitality

Hyatt PlaceHospitality

Apple Leisure GroupHospitality

Apple VacationsTravel Arrangements

Travel ImpressionsLeisure, Travel & Tourism

CheapCaribbean.comTravel Arrangements

ANdAZHospitality

AMResortsTravel Arrangements

Destination by HyattHospitality

HYATT HotelsHospitality

Hyatt Regency IndianapolisHospitality

Thompson HotelsHospitality

Hyatt HouseHospitality

Amstar DMCTravel Arrangements

Hyatt Hotels Development EAMEImmobilien

Miraval Resorts & SpasHospitality

Miraval Berkshires CareersHospitality

Miraval Austin Resort & SpaHospitality

Miraval The Red Seaالضيافة

Miraval Arizona CareersHospitality

JdV by HyattHospitality

Hyatt CentricHospitality

Unlimited Vacation ClubTravel Arrangements

Hyatt Vacation OwnershipHospitality

Secrets ResortsHospitality

The Unbound Collection by HyattHospitality

Hyatt Regency CalgaryHospitality

Hyatt ZivaHospitality

tommie HotelsHospitality

ALG Vacations®Hospitality

Caption by HyattHospitality

Hyatt ZilaraHospitality

UrCove by HyattHospitality

Trisept SolutionsIT Services and IT Consulting

VAX VacationAccess by Trisept SolutionsIT Services and IT Consulting

Hyatt Regency London – The ChurchillHospitality

Hyatt Regency KathmanduHospitality

Hyatt Regency BelgradeHospitality

Hyatt Regency Istanbul AtaköyOtelcilik

Loading…

Hyatt Regency Similar Companies

Fairmont Hotels & Resorts

fairmont.com

Located in the heart of each destination we call home, a stay at any Fairmont hotel is truly unforgettable. Known for grand and awe-inspiring properties and thoughtful and engaging colleagues who aim to make each and every stay a cherished and memorable experience, we have been the stage for some of the most significant moments in global history. As a part of ALL - the Accor Live Limitless Lifestyle Loyalty Program, with 90 exceptional addresses in 32 countries, we are as favored by world leaders and business travelers as we are by families and those with a penchant for luxurious travels. Fairmont Hotels stand at the intersection of elegance and culture, where significant occasions are honored and pivotal global events unfold. Wherever we are situated, our hotels become the cultural and social heart of the community; so immersed in local traditions and so deeply connected to our surroundings, Fairmont Hotels are seen as an essential part of their respective destinations.

Marriott International

marriott.com

Marriott International, Inc. is based in Bethesda, Maryland, USA, and encompasses a portfolio of approximately 9,000 properties across more than 30 leading brands in 141 countries and territories. Its heritage can be traced to a root beer stand opened in Washington, D.C., in 1927 by J. Willard and Alice S. Marriott. Marriott International is an equal opportunity employer committed to hiring a diverse workforce and sustaining an inclusive culture. Marriott International does not discriminate on the basis of disability, veteran status or any other basis protected under federal, state or local laws. Community Guidelines: We reserve the right to remove without any notice content that we determine in our sole discretion is offensive or illegal, contains personally identifiable information, trademarks or copyrights belonging to a third party, advertises a third party’s products or services, or is otherwise inappropriate. Application Tips: We encourage job seekers to protect themselves from email and recruiting scams. Please note: 1) We do not accept applications via email or fax; 2) We never ask for money as part of the application process; 3) We only contact job applicants from approved email domains. Please find more information about Marriott International’s job application process and approved email address domains here: http://www.careers.marriott.com/tips-for-applying/

TUI

tuigroup.com

We’re adventure seekers. Smile givers. Impact makers. We believe in the power of travel. It broadens horizons for our customers, and for our people too. New places to live, new roles to explore, new communities to join. It’s yours for the taking. We’re TUI, a leading global travel and leisure experience company that makes holiday dreams come true for people around the world. We are one of the world’s leading tourism groups counting 1200 travel agencies and online portals, five airlines with around 130 aircraft, over 400 hotels, 16 cruise liners, digital platforms for tours and activities and most importantly over 60 000 colleagues around the world. What unites us is creating moments that enrich the lives of our 21 million customers. Beside the unforgettable experience we provide our customers, we also believe in the good that tourism can bring and we care deeply about our environmental impact. The TUI Care foundation has projects in over 30 countries worldwide, building on the potential of tourism as a global force for development. The Foundation opens up new perspectives through education and training, empowers local communities to benefit from the success of tourism and engages in the protection of nature and the environment. At TUI we simply say “Let’s TUI it”. For us, that means creating happiness. Tackling challenges every day together, with a positive, can-do attitude, and finding solutions even for the most unexpected situations. Our teams across TUI are just as diverse as our destinations. So whether you have lots of experience or none at all. If you want to work in an office or feel best in the field. No matter if you’re an accomplished tech whizz, an aspiring entertainer, or simply in love with flying. There’s a place for you here.

Jumeirah

jumeirah.com

Jumeirah, a global leader in luxury hospitality and a member of Dubai Holding, operates an exceptional portfolio of 31 properties, including 33 signature F&B restaurants, across the Middle East, Europe, Asia and Africa. In 1999, Jumeirah changed the face of luxury hospitality with the opening of the iconic Jumeirah Burj Al Arab and the brand is now renowned worldwide for its distinguished beachfront resorts, esteemed city hotels and luxury residences. From the contemporary Maldivian island paradise at Jumeirah Olhahali Island to the art-inspired Jumeirah Capri Palace in Italy and the modern twist on a British classic at Jumeirah Carlton Tower in London, the brand has become synonymous with warm and generous service and the ability to craft distinctive and purposeful experiences that bring joy to guests from across the world.

Hilton

cb hilton.com

Hilton (NYSE: HLT) is a leading global hospitality company with a portfolio of 24 world-class brands comprising more than 8,400 properties and over 1.25 million rooms, in 140 countries and territories. Dedicated to fulfilling its founding vision to fill the earth with the light and warmth of hospitality, Hilton has welcomed over 3 billion guests in its more than 100-year history, was named the No. 1 World’s Best Workplace by Great Place to Work and Fortune and has been recognized as a global leader on the Dow Jones Sustainability Indices. Hilton has introduced industry-leading technology enhancements to improve the guest experience, including Digital Key Share, automated complimentary room upgrades and the ability to book confirmed connecting rooms. Through the award-winning guest loyalty program Hilton Honors, the more than 210 million Hilton Honors members who book directly with Hilton can earn Points for hotel stays and experiences money can't buy. With the free Hilton Honors app, guests can book their stay, select their room, check in, unlock their door with a Digital Key and check out, all from their smartphone. Visit stories.hilton.com for more information, and connect with Hilton on Facebook, X, LinkedIn, Instagram and YouTube.

Marriott Hotels

cb MarriottHotels.com

With over 500 properties worldwide, Marriott Hotels has reimagined hospitality to exceed the expectations of business, group, and leisure travelers. Marriott Hotels, Marriott’s flagship brand of quality-tier, full-service hotels and resorts, provides consistent, dependable and genuinely caring experiences to guests on their terms. Marriott is a brilliant host to guests who effortlessly blend life and work, and who are inspired by how modern travel enhances them both. Our hotels offer warm, professional service; sophisticated yet functional guest room design; lobby spaces that facilitate working, dining and socializing; restaurants and bars serving international cuisine prepared simply and from the freshest ingredients; meeting and event spaces and services that are gold standard; and expansive, 24-hour fitness facilities.

Accor

accor.com

We are Accor We are more than 290,000 hospitality experts placing people at the heart of what we do, creating emotion for our guests, and nurturing passion for service and achievement beyond limits. Building on the strength of our teams and of our fully integrated ecosystem of leading brands, personalized services & expert solutions, we break new ground to reimagine hospitality and inspire new ways to experience the world. We are dedicated to suit all desires and needs, and reinvent the guest experience every day with our 45 hotel brands across all segments- 5,600 properties around the world from luxury five-star palaces to smart economy hotels, exquisite residences to full-service resorts. Because we take care of millions of guests and each of our hotels is a world in itself, where every action counts. We strive to make positive impact both locally and globally, to ensure hospitality benefits not only the few, but all.

JW Marriott

jwmarriott.com

No loud pretense. No excess formalities. Just understated elegance you’ll feel the moment you walk into one of over 80 worldwide destinations. JW Marriott is part of Marriott International’s luxury portfolio and consists of beautiful properties in gateway cities and distinctive resort locations in 28 countries around the world. These elegant hotels cater to today’s sophisticated, self-assured travelers, offering them the quiet luxury they seek in a warmly authentic, relaxed atmosphere lacking in pretense. JW Marriott properties artfully provide highly crafted, anticipatory experiences that are reflective of their locale so that their guests have the time to focus on what is most important to them.

Minor Hotels

minorhotels.com

Minor Hotels is a global hospitality leader with over 560 hotels and resorts across six continents, a diverse portfolio of F&B businesses and a selection of luxury transportation services. With over four decades of experience, we build stronger brands, foster lasting partnerships, and drive business success by staying focused on what matters most to our guests, team members and partners. Our diverse hotel brands - from the luxury of Anantara and Tivoli to the vibrant style of Avani and nhow - bring our guests to the most desirable hotel and resort destinations around the world. We also own a collection of related hospitality businesses, including luxury residences, private jets, restaurants and bars, spa and wellness, and river cruises and rail journeys. #MinorHotels

Loading…

NEWS

Hyatt Regency CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

March 12, 2026 11:58 PM

OTC students earn gold and bronze medals at State SkillsUSA Competition

Ogeechee Technical College's SkillsUSA team represented Statesboro and technical education well at the 2026 SkillsUSA Georgia State...

Read Article

February 23, 2026 03:08 PM

Solar Quality Summit 2026: Cybersecurity and AI reshape solar bankability in Europe

As Europe accelerates renewable energy deployment, digital resilience, AI-driven asset management and new technical due diligence standards...

Read Article

January 19, 2026 08:00 AM

Ransomware Attacks Expose Data of Hyatt Hotels and Ingram Micro

Recent ransomware attacks exposed data at Hyatt Hotels and Ingram Micro, highlighting rising cyber threats and the urgent need for robust...

Read Article

December 19, 2025 10:19 PM

6th Annual TribalHub Cybersecurity Summit

The 6th Annual TribalHub Cybersecurity Summit has expanded to include a non-technical Executive Responsibility track, designed for leaders across tribal…

Read Article

December 04, 2025 08:00 AM

TribalHub Cybersecurity Summit To Include Executive Responsibility Track

PORTGE, MI – The 6th Annual TribalHub Cybersecurity Summit has expanded to include a non-technical Executive Responsibility track.

Read Article

December 03, 2025 08:00 AM

TribalHub Cybersecurity Summit scheduled for February in Jacksonville, Florida

Florida · Tribal Gaming · Cybersecurity · Technology. TribalHub on Wednesday announced that its sixth annual Cybersecurity Summit has...

Read Article

October 08, 2025 07:00 AM

Kristi Noem Is Charting a Bold Course for U.S. Cybersecurity at DHS

Learn about the DHS secretary's ambitious plan for cyber protection and CISA and hear her speak at an upcoming GovCon conference.

Read Article

October 03, 2025 07:00 AM

Kochi to host flagship cybersecurity conference next week

Kochi: c0c0n 2025, one of India's flagship cybersecurity conferences, will include a special LEA (law enforcement agencies) track this year.

Read Article

August 13, 2025 07:00 AM

Growth Forum arrives in Birmingham this November

IT Europa's Regional Growth Forum heads to Birmingham on 5 November 2025, delivering a focused, invitation-only summi.

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-12175

SUMMARY

A vulnerability was detected in CodeAstro Student Attendance Management System 1.0. Impacted is an unknown function of the file /attendance-php/Admin/createStudents.php. Performing a manipulation of the argument admissionNumber results in sql injection. Remote exploitation of the attack is possible. The exploit is now public and may be used.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 4.7)

cvss2

Base Score: 5.8

Complexity: LOW

AV:N/AC:L/Au:M/C:P/I:P/A:P

cvss3

Base Score: 4.7

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 2.0

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

1.2

REFERENCES

CVE-2026-12174

SUMMARY

A security vulnerability has been detected in D-Link DCS-935L 1.10.01. This issue affects the function snprintf of the file /web/cgi-bin/greece/rhea of the component HTTP Handler. Such manipulation of the argument data leads to format string. The attack may be launched remotely. The exploit has been disclosed publicly and may be used.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 8.8)

cvss2

Base Score: 9.0

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:C/A:C

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 7.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

2.8

REFERENCES

CVE-2026-12183

SUMMARY

Nefteprodukttekhnika BUK TS-G Gas Station Automation System 2.9.1 through 2.10.2 on Linux contains an Improper Authentication vulnerability (CWE-287) in the system configuration module. The /php/ajax-login.php endpoint returns userid=1 (administrator) in response to any HTTP POST request that supplies arbitrary credentials (e.g., action=dologin&login=<any_value>&pwd=<any_value>), and subsequent privileged endpoints under /php/ajax-main.php and /modules/* do not validate a server-side session. A remote unauthenticated attacker can invoke any administrative action exposed by the configuration module, including reading and modifying user rules, fuel tank gauges, fuel dispensers, relays, cash registers, bank terminals, fuel cards, price and customer displays, cash collection, and pricing rules.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 9.8)

cvss3

Base Score: 9.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 9.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

3.9

REFERENCES

CVE-2026-6428

SUMMARY

SQL Injection in reports/catalogue_out.pl in Koha Community Koha through 22.11.37, 23.x, 24.x before 24.11.16, 25.05.x before 25.05.11, 25.11.x before 25.11.05, 26.05.x before 26.05.01, and 26.11.x before 26.11.00 allows an authenticated staff user with the Reports module flag to read arbitrary data from the Koha application database via the Filter URL parameter when the Criteria parameter matches /branchcode/. The vulnerable sink in sub calculate concatenates the unmodified Filter request parameter directly into a LIKE clause of the auxiliary $strsth2 statement and executes it via DBI without bound parameters: my $f = @$filters[0]; $f =~ s/\*/%/g; $strsth2 .= " AND $column LIKE '$f' "; This enables error-based SQL injection (e.g., via EXTRACTVALUE) and full read access to sensitive tables including borrowers (password hashes, 2FA secrets, PII), borrower_password_recovery, api_keys, and sessions. Proof of concept (error-based, single request): GET /cgi-bin/koha/reports/catalogue_out.pl?do_it=1&output=screen&Limit=10&Criteria=branchcode&Filter=x'+AND+EXTRACTVALUE(1,CONCAT(0x7e,VERSION(),0x7c,USER(),0x7c,DATABASE(),0x7e))--+- Cookie: CGISESSID=<LIBRARIAN_SESSION> The response body contains the DBI exception leaking the MariaDB version, database user, client IP, and database name, after which arbitrary data can be paged out using LIMIT n,1 / SUBSTRING(...). The vulnerable sink was introduced in commit 6bb77ae3e4 (2008-07-09); CVE-2015-4633 patched the same class in sibling files but did not generalise the fix to reports/catalogue_out.pl. Fixed in Koha 22.11.38, 24.11.16, 25.05.11, 25.11.05, 26.05.01, and 26.11.00 by replacing the raw concatenation with a parameterised placeholder.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 7.6)

cvss2

Base Score: 7.5

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:N/A:P

cvss3

Base Score: 7.6

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L

cvss4

Base Score: 5.6

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:X/V:C/RE:X/U:Amber

Impact Score

4.7

Exploitability

2.8

REFERENCES

CVE-2026-5513

SUMMARY

The Online Scheduling and Appointment Booking System – Bookly plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'bookly-customer-full-name' cookie in versions up to, and including, 27.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. Exploitation requires 'Remember personal information in cookies' setting to be enabled (disabled by default).

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 7.2)

cvss3

Base Score: 7.2

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

Impact Score

2.7

Exploitability

3.9

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…