What is the official website of Marriott International ?

The official website of Marriott International is http://www.marriott.com.

What is Marriott International's cybersecurity risk score?

Marriott International has an AI-generated cybersecurity risk score of 707 out of 1000, indicating a Moderate security posture according to Rankiteo's assessment.

How many security incidents has Marriott International experienced?

According to Rankiteo, Marriott International currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Marriott International been affected by any supply chain cyber incidents ?

According to Rankiteo, Marriott International has been affected by a supply chain cyber incident involving gastrodat GmbH, with the incident ID CHEGAS1776335039.

Does Marriott International have SOC 2 Type 1 certification ?

According to Rankiteo, Marriott International is not certified under SOC 2 Type 1.

Does Marriott International have SOC 2 Type 2 certification ?

According to Rankiteo, Marriott International does not hold a SOC 2 Type 2 certification.

Does Marriott International comply with GDPR ?

According to Rankiteo, Marriott International is not listed as GDPR compliant.

Does Marriott International have PCI DSS certification ?

According to Rankiteo, Marriott International does not currently maintain PCI DSS compliance.

Does Marriott International comply with HIPAA ?

According to Rankiteo, Marriott International is not compliant with HIPAA regulations.

Does Marriott International have ISO 27001 certification ?

According to Rankiteo,Marriott International is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Marriott International operate in ?

Marriott International operates primarily in the Hospitality industry.

How many employees does Marriott International have ?

Marriott International employs approximately 213,175 people worldwide.

Does Marriott International own any subsidiaries ?

Marriott International presently has no subsidiaries across any sectors.

How many LinkedIn followers does Marriott International have ?

Marriott International's official LinkedIn profile has approximately 3,181,695 followers.

What is the NAICS classification code for Marriott International ?

Marriott International is classified under the NAICS code 7211, which corresponds to Traveler Accommodation.

Does Marriott International have a Crunchbase profile ?

No, Marriott International does not have a profile on Crunchbase.

Does Marriott International have a LinkedIn profile ?

Yes, Marriott International maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/marriott-international.

How many cybersecurity incidents has Marriott International experienced ?

As of June 14, 2026, Rankiteo reports that Marriott International has experienced 6 cybersecurity incidents.

How many peer or competitor companies does Marriott International have ?

Marriott International has an estimated 14,277 peer or competitor companies worldwide.

What types of cybersecurity incidents has Marriott International faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Breach and Data Leak.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Marriott International

Boost Score +25 with badge (5 left)

707

/1000

Moderate

732

/1000

Moderate

Marriott International Vendor Cyber Rating & Cyber Score

marriott.com

Add Your Compliance Badge

Marriott International, Inc. is based in Bethesda, Maryland, USA, and encompasses a portfolio of approximately 9,000 properties across more than 30 leading brands in 141 countries and territories. Its heritage can be traced to a root beer stand opened in Washington, D.C., in 1927 by J. Willard and Alice S. Marriott. Marriott International is an equal opportunity employer committed to hiring a diverse workforce and sustaining an inclusive culture. Marriott International does not discriminate on the basis of disability, veteran status or any other basis protected under federal, state or local laws. Community Guidelines: We reserve the right to remove without any notice content that we determine in our sole discretion is offensive or

Marriott International A.I CyberSecurity Scoring

Scoring History

Marriott International

Marriott International CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Marriott Internatio...

Breach

4/2026

gastrodat GmbH

CHEGAS177633503...

Marriott Internatio...

Breach

10/2025

MAR080220810112...

Marriott Internatio...

Breach

100

07/2022

MAR1318722

Marriott Internatio...

Breach

06/2022

MAR13023722

Marriott Internatio...

Data Leak

09/2019

MAR81730423

Marriott Internatio...

Breach

6/2016

MAR019090625

Loading…

A.I.

Marriott International Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Marriott International

Incidents vs Hospitality Industry Avg (This Year)

Marriott International has 32.43% fewer incidents than the average of same-industry companies with at least one recorded incident.

Incidents vs All-Companies Average (This Year)

Marriott International has 6.54% fewer incidents than the average of all companies with at least one recorded incident.

Incident Types Marriott International vs Hospitality Industry Avg (This Year)

Marriott International reported 1 incidents this year: 0 cyber attacks, 0 ransomware, 0 vulnerabilities, 1 data breaches, compared to industry peers with at least 1 incident.

Incident History - Marriott International (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Marriott International Subsidiaries

Marriott International

Hospitality

Website: http://www.marriott.com

Company Size: 10,000+ employees

Marriott BonvoyHospitality

JW MarriottHospitality

JW Marriott Bucharest Grand HotelHospitality

Marriott HotelsHospitality

Sheraton Hotels & ResortsHospitality

JW Marriott Marquis Hotel DubaiHospitality

Courtyard by MarriottHospitality

Le Méridien Hotels & ResortsHospitality

The Athenee Hotel, a Luxury Collection Hotel, BangkokHospitality

Le Méridien BangkokHospitality

Fairfield by MarriottHospitality

EDITIONHospitality

Renaissance HotelsHospitality

Aloft HotelsHospitality

Aloft RiyadhHospitality

Aloft DhahranHospitality

Design HotelsHospitality

Gaylord HotelsHospitality

Westin Hotels & ResortsHospitality

The Westin Kuala LumpurHospitality

Revenue Management Advisory Services (RMAS)Hospitality

Residence Inn by MarriottHospitality

Marriott U.S. Sales OrganizationHospitality

Marriott Executive ApartmentsHospitality

Residence InnHospitality

TownePlace Suites by MarriottHospitality

Delta Hotels and Resorts®Hospitality

Autograph CollectionHospitality

SpringHill Suites by MarriottHospitality

W HotelsHospitality

Four Points by SheratonHospitality

Marriott Bonvoy EventsEvents Services

Overheard@MarriottLeisure, Travel & Tourism

Marriott DevelopmentHospitality

The Ritz-Carlton Hotel Company, L.L.C.Hospitality

Starwood Preferred Guest (SPG)Hospitality

Loading…

Marriott International Similar Companies

IHG Hotels & Resorts

ihgplc.com

IHG Hotels & Resorts [LON:IHG, NYSE:IHG (ADRs)] is a global hospitality company, with a purpose to provide True Hospitality for Good. With a family of 21 hotel brands and IHG One Rewards, one of the world's largest hotel loyalty programmes, IHG has over 7,000 open hotels in more than 100 countries, and a development pipeline of over 2,300 properties. Luxury & Lifestyle: Six Senses Hotels Resorts Spas, Regent Hotels & Resorts, InterContinental Hotels & Resorts, Vignette Collection, Kimpton Hotels & Restaurants, Hotel Indigo Premium: Noted Collection, voco hotels, Ruby, HUALUXE Hotels & Resorts, Crowne Plaza Hotels & Resorts, EVEN Hotels Essentials: Holiday Inn Express, Holiday Inn Hotels & Resorts, Garner hotels, avid hotels Suites: Atwell Suites, Staybridge Suites, Holiday Inn Club Vacations, Candlewood Suites Exclusive Partners: Iberostar Beachfront Resorts InterContinental Hotels Group PLC is the Group's holding company and is incorporated and registered in England and Wales. Approximately 400,000 people work across IHG's hotels and corporate offices globally. Visit us online for more about our hotels and reservations and IHG One Rewards. To download the IHG One Rewards app, visit the Apple App or Google Play stores.

Kempinski Hotels

kempinski.com

Founded in Germany in 1897, Kempinski Hotels has long reflected the finest traditions of European hospitality. Today, as ever, Kempinski is synonymous with distinctive luxury. Located in many of the world's most well-known cities and resorts, the Kempinski collection includes hotels in a grand manner, pace-setting modern establishments and older hotels of individual charm. All blend gracefully into their surroundings and offer luxurious accommodations, superb cuisine and unrivalled facilities - complemented by impeccable service. For leisure and business guests alike, the name Kempinski has long been synonymous with style, mobility and efficiency. Put simply, they are the first choice for the discerning individual. In addition to operating many of the finest city hotels in the world, Kempinski is a name that can now be found in many exciting resort locations, each combining local flair and ambience with the international standards of service and luxury that Kempinski guests have come to expect. To see all the different Kempinski jobs and apply, please go to https://careers.kempinski.com

Rosewood Hotel Group

rosewoodhotelgroup.com

Rosewood Hotel Group is one of the world’s leading global lifestyle and hospitality management groups. It encompasses four brands: ultra-luxury Rosewood; upper-upscale New World Hotels & Resorts; Asaya, an integrated well-being concept; and Carlyle & Co., a modern and progressive private members club. Its combined hotel portfolio consists of 59 properties in 26 countries with more than 30 new properties currently under development. OUR PURPOSE AND CULTURE We are driven to create a future where people and place enrich one another. We are wholly committed to rooting ourselves more deeply in every place we are in while setting new benchmarks for positive impact. As a pioneering collective with a common purpose, we curate extraordinary moments and honor the soul of every place along our journey. At Rosewood Hotel Group, we answer The Calling. Together, we Make the Place. OUR GUIDING PHILOSOPHY We believe in and are guided by Relationship Hospitality. We are all about heartfelt interactions. A desire to build genuine, rewarding and lasting relationships with everyone we meet comes naturally to us. OUR COMMITMENT At Rosewood Hotel Group, your voice is heard – and valued. We’re a community that encourages associates to be themselves, not fit into a fixed culture, and this philosophy shines through in our commitments to reflect and honor the history, culture and geography of our destinations. We’re not only committed to building and nurturing genuine, long-lasting relationships but to transforming them – and our Diversity, Equity and Inclusion (DEI) strategy helps put these principles into practice.

Taj Hotels

tajhotels.com

Established in 1903, Taj is The Indian Hotels Company Limited’s (IHCL) iconic brand for the world’s most discerning travellers seeking luxury and authentic experiences. Taj has been rated as India’s Strongest Brand across all sectors for an unprecedented fourth time and also as the World’s Strongest Hotel Brand for the third consecutive year in 2024 by Brand Finance. From landmark city addresses to enchanting jungle safaris, and from idyllic resorts to authentic living Grand Palaces, each Taj hotel offers an unrivalled fusion of warm Indian hospitality, world-class service and modern luxury. Taj's unique portfolio comprises hotels across India, North America, United Kingdom, Africa, Middle East, Sri Lanka, Maldives and Nepal.

ITC Hotels Limited

itchotels.com

Established in 1975, ITC Hotels Limited has grown to encompass over 140+ hotels across 90+ destinations, solidifying its presence in the Indian subcontinent ITC Hotels seamlessly blends India’s rich tradition of hospitality with globally benchmarked services, offering a collection of hotels and resorts that reflect the unique culture and ethos of each destination. The group operates under six vibrant brands: ITC Hotels and Mementos in the luxury segment, Storii in the boutique premium segment, Welcomhotel in the upper upscale category, Fortune in the midscale segment, and WelcomHeritage in the heritage leisure space

Hilton

cb hilton.com

Hilton (NYSE: HLT) is a leading global hospitality company with a portfolio of 24 world-class brands comprising more than 8,400 properties and over 1.25 million rooms, in 140 countries and territories. Dedicated to fulfilling its founding vision to fill the earth with the light and warmth of hospitality, Hilton has welcomed over 3 billion guests in its more than 100-year history, was named the No. 1 World’s Best Workplace by Great Place to Work and Fortune and has been recognized as a global leader on the Dow Jones Sustainability Indices. Hilton has introduced industry-leading technology enhancements to improve the guest experience, including Digital Key Share, automated complimentary room upgrades and the ability to book confirmed connecting rooms. Through the award-winning guest loyalty program Hilton Honors, the more than 210 million Hilton Honors members who book directly with Hilton can earn Points for hotel stays and experiences money can't buy. With the free Hilton Honors app, guests can book their stay, select their room, check in, unlock their door with a Digital Key and check out, all from their smartphone. Visit stories.hilton.com for more information, and connect with Hilton on Facebook, X, LinkedIn, Instagram and YouTube.

Holiday Inn

holidayinn.com

More than an iconic place to stay, Holiday Inn Hotels are a place to be in the moment–gathered to celebrate with family, laughing with friends, sharing a meal with the team, or just for some well-deserved me-time. No matter the reason you travel, when you’re here, you’re right where you’re meant to be. Book with us and become an IHG One Rewards member.

Travel + Leisure Co.

travelandleisureco.com

Travel + Leisure Co., the world's leading vacation ownership and membership travel company, provides more than six million vacations to travelers every year. The company’s extensive Vacation Ownership portfolio includes trusted and iconic vacation club brands with a combined 270+ resorts worldwide, offering quality, flexibility, and value to more than 800,000 timeshare owners. Through its Travel and Membership business line, the company unlocks even more travel inspiration and opportunities via its signature subscription travel club, Travel + Leisure GO, and pioneering timeshare exchange network, RCI. With hospitality and responsible tourism at its heart, the company’s 19,000+ dedicated associates around the globe help the company achieve its mission to put the world on vacation.

Mandarin Oriental

mandarinoriental.com

Mandarin Oriental Hotel Group is the award-winning owner and operator of some of the world’s most luxurious hotels, resorts and residences. Having grown from its Asian roots into a global brand, the Group now operates 43 hotels, 12 residences and 23 exclusive homes in 26 countries and territories, with each property reflecting the Group’s oriental heritage, local culture and unique design. Mandarin Oriental has a strong pipeline of hotels and residences under development and is a member of the Jardine Matheson Group. Mandarin Oriental’s aim is to be recognised widely as the best global luxury hotel group, providing 21st-century luxury with oriental charm in each of its hotels. This will be achieved by investing in the Group’s exceptional facilities and people while maximizing profitability and long-term shareholder value. The Group regularly receives recognition and awards for outstanding service and quality management. The strategy of the Group is to open the hotels currently under development while continuing to seek further selective opportunities for expansion around the world. The parent company, Mandarin Oriental International Limited, is incorporated in Bermuda and has a premium listing on the London Stock Exchange, with secondary listings in Bermuda and Singapore. Mandarin Oriental Hotel Group International Limited, which operates from Hong Kong, manages the activities of the Group’s hotels. Mandarin Oriental is a member of the Jardine Matheson Group.

Loading…

NEWS

Marriott International CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

February 07, 2026 04:40 AM

FTC and Coalition of State Attorneys General Announce Settlements with Marriott over Guest Data Breaches

Categories: Cybersecurity, Enforcement, Information Security, U.S. Federal Law, U.S. State Law. On October 9, 2024, both the Federal Trade Commission and a...

Read Article

January 25, 2026 08:00 AM

Hackers Use ‘rn’ Typo Trick to Impersonate Microsoft and Marriott in New Phishing Attack

A sophisticated "homoglyph" phishing campaign targeting customers of Marriott International and Microsoft. Attackers are registering domains...

Read Article

January 06, 2026 08:00 AM

5 Interns Share Their Best Tips to Land a Marriott Internship

Discover practical tips and career insights from real Marriott interns on how to land and succeed in a hospitality internship.

Read Article

December 18, 2025 11:33 PM

Marriott International confirms data breach of up to 5.2 million guests

Marriott International has today announced that it has suffered a data breach affecting up to 5.2 million people.

Read Article

December 07, 2025 08:00 AM

LockBit 5.0 Targets Marriott International

LockBit 5.0 ransomware strikes Marriott International, threatening data leak unless terms are met.

Read Article

November 21, 2025 08:00 AM

Cybersecurity and Data Privacy Implications When a Services Partner Fails

On November 10, 2025, Sonder Holdings Inc. (“Sonder”), a company operating apartment‑style and boutique hotel accommodations,...

Read Article

September 10, 2025 07:00 AM

Marriott Focuses on AI and Cybersecurity in Technology Overhaul

Marriott International is implementing a digital transformation plan that focuses on AI and cloud technologies to enhance its operations and...

Read Article

September 04, 2025 07:00 AM

Marriott checks out AI agents amid technology transformation

Marriott International is executing a multiyear digital and technology transformation plan that aims to retool the company, replace systems...

Read Article

August 13, 2025 07:46 AM

How Marriott Vacations Safeguards Its Data and Secures Global Operations with Illumio | Illumio Customers

Seamless vacations, trusted security at every destination. Marriott Vacations Worldwide isn't just a hospitality brand. It's a global business built around...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-12175

SUMMARY

A vulnerability was detected in CodeAstro Student Attendance Management System 1.0. Impacted is an unknown function of the file /attendance-php/Admin/createStudents.php. Performing a manipulation of the argument admissionNumber results in sql injection. Remote exploitation of the attack is possible. The exploit is now public and may be used.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 4.7)

cvss2

Base Score: 5.8

Complexity: LOW

AV:N/AC:L/Au:M/C:P/I:P/A:P

cvss3

Base Score: 4.7

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 2.0

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

1.2

REFERENCES

CVE-2026-12174

SUMMARY

A security vulnerability has been detected in D-Link DCS-935L 1.10.01. This issue affects the function snprintf of the file /web/cgi-bin/greece/rhea of the component HTTP Handler. Such manipulation of the argument data leads to format string. The attack may be launched remotely. The exploit has been disclosed publicly and may be used.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 8.8)

cvss2

Base Score: 9.0

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:C/A:C

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 7.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

2.8

REFERENCES

CVE-2026-12183

SUMMARY

Nefteprodukttekhnika BUK TS-G Gas Station Automation System 2.9.1 through 2.10.2 on Linux contains an Improper Authentication vulnerability (CWE-287) in the system configuration module. The /php/ajax-login.php endpoint returns userid=1 (administrator) in response to any HTTP POST request that supplies arbitrary credentials (e.g., action=dologin&login=<any_value>&pwd=<any_value>), and subsequent privileged endpoints under /php/ajax-main.php and /modules/* do not validate a server-side session. A remote unauthenticated attacker can invoke any administrative action exposed by the configuration module, including reading and modifying user rules, fuel tank gauges, fuel dispensers, relays, cash registers, bank terminals, fuel cards, price and customer displays, cash collection, and pricing rules.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 9.8)

cvss3

Base Score: 9.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 9.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

3.9

REFERENCES

CVE-2026-6428

SUMMARY

SQL Injection in reports/catalogue_out.pl in Koha Community Koha through 22.11.37, 23.x, 24.x before 24.11.16, 25.05.x before 25.05.11, 25.11.x before 25.11.05, 26.05.x before 26.05.01, and 26.11.x before 26.11.00 allows an authenticated staff user with the Reports module flag to read arbitrary data from the Koha application database via the Filter URL parameter when the Criteria parameter matches /branchcode/. The vulnerable sink in sub calculate concatenates the unmodified Filter request parameter directly into a LIKE clause of the auxiliary $strsth2 statement and executes it via DBI without bound parameters: my $f = @$filters[0]; $f =~ s/\*/%/g; $strsth2 .= " AND $column LIKE '$f' "; This enables error-based SQL injection (e.g., via EXTRACTVALUE) and full read access to sensitive tables including borrowers (password hashes, 2FA secrets, PII), borrower_password_recovery, api_keys, and sessions. Proof of concept (error-based, single request): GET /cgi-bin/koha/reports/catalogue_out.pl?do_it=1&output=screen&Limit=10&Criteria=branchcode&Filter=x'+AND+EXTRACTVALUE(1,CONCAT(0x7e,VERSION(),0x7c,USER(),0x7c,DATABASE(),0x7e))--+- Cookie: CGISESSID=<LIBRARIAN_SESSION> The response body contains the DBI exception leaking the MariaDB version, database user, client IP, and database name, after which arbitrary data can be paged out using LIMIT n,1 / SUBSTRING(...). The vulnerable sink was introduced in commit 6bb77ae3e4 (2008-07-09); CVE-2015-4633 patched the same class in sibling files but did not generalise the fix to reports/catalogue_out.pl. Fixed in Koha 22.11.38, 24.11.16, 25.05.11, 25.11.05, 26.05.01, and 26.11.00 by replacing the raw concatenation with a parameterised placeholder.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 7.6)

cvss2

Base Score: 7.5

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:N/A:P

cvss3

Base Score: 7.6

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L

cvss4

Base Score: 5.6

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:X/V:C/RE:X/U:Amber

Impact Score

4.7

Exploitability

2.8

REFERENCES

CVE-2026-5513

SUMMARY

The Online Scheduling and Appointment Booking System – Bookly plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'bookly-customer-full-name' cookie in versions up to, and including, 27.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. Exploitation requires 'Remember personal information in cookies' setting to be enabled (disabled by default).

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 7.2)

cvss3

Base Score: 7.2

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

Impact Score

2.7

Exploitability

3.9

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…