Comparison Overview

M. Lee Smith Publishers

VS

Evan-Moor Educational Publishers

M. Lee Smith Publishers

None
Last Update: 2025-11-23
View Profile
Between 750 and 799
http://www.hrhero.com

M. Lee Smith Publishers (MLSP) is a leading provider of legal and practical information for human resources practitioners, attorneys, and other business and legal professionals. The company started in 1975 with one weekly newsletter, The Tennessee Journal, which gave a behind-the-scenes report on the Tennessee legislature. Today, the company has an extensive catalog of products and services providing state-specific and federal legal information covering all 50 states in print, online, and on DVD. The company also produces business directories and holds live, audio, and online conferences.

NAICS: 511
NAICS Definition:
Employees: 24
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

Evan-Moor Educational Publishers

10 Harris Court, Suite C-3, Monterey, California, 93940, US
Last Update: 2025-11-21
Between 750 and 799
http://www.evan-moor.com

Our mission is to ignite young minds to help every child learn and succeed! Founded by teachers and with a legacy of excellence for over 45 years, Evan-Moor strives to be a trusted partner in every child’s learning journey, whether in the classroom or at home. We are committed to developing innovative educational PreK–8 resources that create meaningful learning experiences for kids and inspire a love of learning. And we take pride in developing award-winning resources that align with current educational standards and best practices while fostering curiosity, critical thinking, and a love of learning in students around the world. Evan-Moor is dedicated to igniting young minds and empowering the next generation of learners to thrive academically and beyond.

NAICS: 511
NAICS Definition:
Employees: 46
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/m.-lee-smith-publishers.jpeg
M. Lee Smith Publishers
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/evan-moor-educational-publishers.jpeg
Evan-Moor Educational Publishers
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
M. Lee Smith Publishers
100%
Compliance Rate
0/4 Standards Verified
Evan-Moor Educational Publishers
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Book and Periodical Publishing Industry Average (This Year)

No incidents recorded for M. Lee Smith Publishers in 2025.

Incidents vs Book and Periodical Publishing Industry Average (This Year)

No incidents recorded for Evan-Moor Educational Publishers in 2025.

Incident History — M. Lee Smith Publishers (X = Date, Y = Severity)

M. Lee Smith Publishers cyber incidents detection timeline including parent company and subsidiaries

Incident History — Evan-Moor Educational Publishers (X = Date, Y = Severity)

Evan-Moor Educational Publishers cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/m.-lee-smith-publishers.jpeg
M. Lee Smith Publishers
Incidents

No Incident

https://images.rankiteo.com/companyimages/evan-moor-educational-publishers.jpeg
Evan-Moor Educational Publishers
Incidents

No Incident

FAQ

Evan-Moor Educational Publishers company demonstrates a stronger AI Cybersecurity Score compared to M. Lee Smith Publishers company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, Evan-Moor Educational Publishers company has disclosed a higher number of cyber incidents compared to M. Lee Smith Publishers company.

In the current year, Evan-Moor Educational Publishers company and M. Lee Smith Publishers company have not reported any cyber incidents.

Neither Evan-Moor Educational Publishers company nor M. Lee Smith Publishers company has reported experiencing a ransomware attack publicly.

Neither Evan-Moor Educational Publishers company nor M. Lee Smith Publishers company has reported experiencing a data breach publicly.

Neither Evan-Moor Educational Publishers company nor M. Lee Smith Publishers company has reported experiencing targeted cyberattacks publicly.

Neither M. Lee Smith Publishers company nor Evan-Moor Educational Publishers company has reported experiencing or disclosing vulnerabilities publicly.

Neither M. Lee Smith Publishers nor Evan-Moor Educational Publishers holds any compliance certifications.

Neither company holds any compliance certifications.

Neither M. Lee Smith Publishers company nor Evan-Moor Educational Publishers company has publicly disclosed detailed information about the number of their subsidiaries.

Evan-Moor Educational Publishers company employs more people globally than M. Lee Smith Publishers company, reflecting its scale as a Book and Periodical Publishing.

Neither M. Lee Smith Publishers nor Evan-Moor Educational Publishers holds SOC 2 Type 1 certification.

Neither M. Lee Smith Publishers nor Evan-Moor Educational Publishers holds SOC 2 Type 2 certification.

Neither M. Lee Smith Publishers nor Evan-Moor Educational Publishers holds ISO 27001 certification.

Neither M. Lee Smith Publishers nor Evan-Moor Educational Publishers holds PCI DSS certification.

Neither M. Lee Smith Publishers nor Evan-Moor Educational Publishers holds HIPAA certification.

Neither M. Lee Smith Publishers nor Evan-Moor Educational Publishers holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

ThingsBoard in versions prior to v4.2.1 allows an authenticated user to upload malicious SVG images via the "Image Gallery", leading to a Stored Cross-Site Scripting (XSS) vulnerability. The exploit can be triggered when any user accesses the public API endpoint of the malicious SVG images, or if the malicious images are embedded in an `iframe` element, during a widget creation, deployed to any page of the platform (e.g., dashboards), and accessed during normal operations. The vulnerability resides in the `ImageController`, which fails to restrict the execution of JavaScript code when an image is loaded by the user's browser. This vulnerability can lead to the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and allowing unauthorized actions.

Published
Date
2025-11-27
Updated
Date
2025-11-27
Risk Information
cvss4
Base: 6.2
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:H/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to to verify that the token used during the code exchange originates from the same authentication flow, which allows an authenticated user to perform account takeover via a specially crafted email address used when switching authentication methods and sending a request to the /users/login/sso/code-exchange endpoint. The vulnerability requires ExperimentalEnableAuthenticationTransfer to be enabled (default: enabled) and RequireEmailVerification to be disabled (default: disabled).

Published
Date
2025-11-27
Updated
Date
2025-11-27
Risk Information
cvss3
Base: 9.9
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
References
Description

Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to sanitize team email addresses to be visible only to Team Admins, which allows any authenticated user to view team email addresses via the GET /api/v4/channels/{channel_id}/common_teams endpoint

Published
Date
2025-11-27
Updated
Date
2025-11-27
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
References
Description

Exposure of email service credentials to users without administrative rights in Devolutions Server.This issue affects Devolutions Server: before 2025.2.21, before 2025.3.9.

Published
Date
2025-11-27
Updated
Date
2025-11-27
References
Description

Exposure of credentials in unintended requests in Devolutions Server.This issue affects Server: through 2025.2.20, through 2025.3.8.

Published
Date
2025-11-27
Updated
Date
2025-11-27
References