Comparison Overview

Museum of Human Rights, Freedom and Tolerance

VS

Imagination Station, Toledo's Science Center

Museum of Human Rights, Freedom and Tolerance

None
Last Update: 2025-12-01
View Profile
Between 750 and 799
http://www.museumhrft.org

The Museum of Human Rights, Freedom and Tolerance was established in 2009 with a mission to promote the universal message of freedom as basic human right, educate public about the struggle for tolerance and against oppression, and to help diverse communities preserve the memories of genocide and persecution they suffered throughout history. The Museum is a non-profit 501 (c) 3 organization. The Museum’s collections and exhibitions present a panoramic picture of many tragic events of recent and past history. The Museum preserves memories of the victims, educates the public about the dangers of violence and prejudice, and explains the value of tolerance, diversity and mutual respect and understanding. It also offers educational programs, workshops, and study materials placed in a cultural and historical context.

NAICS: 712
NAICS Definition: Museums, Historical Sites, and Similar Institutions
Employees: 5
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

Imagination Station, Toledo's Science Center

1 Discovery Way, Toledo, Ohio, 43604, US
Last Update: 2025-12-01
Between 750 and 799
https://www.imaginationstationtoledo.org/about/careers/

Imagination Station, Toledo’s Science Center, is a vital non-profit organization that is an integral part of Toledo’s economic, educational and social landscape. With hundreds of interactive exhibits and demonstrations, we deliver a multi-sensory experience that’s as fun as it is educational. Imagination Station provides a critical layer of science enrichment by serving as an educational partner for educators, schools, parents and the community. It’s with a thoughtful blend of exhibits, experiences, education and excitement that Imagination Station inspires visitors to pursue Science, Technology, Engineering and Math (STEM) in Northwest Ohio. Our Mission: Serve our community by providing informal science education and fun in order to spark a passion for the sciences by combining interactive exhibits and educational programming. Our Vision: To be a science center whose impact extends well beyond our walls and inspires innovation, equips our visitors with valuable life skills and prepares our community for our knowledge-based economy. We do this because we know that we can inspire people, that people shape the sciences and that the sciences will shape the world. Our Team Values: Service and collaboration - We help each other do whatever it takes to support the science center, one another and our community. Responsibility - We take ownership of our roles. We understand that every person makes a difference and that excellence inspires excellence. Empathy - We create an inclusive environment in which a wide variety of thoughts, opinions, backgrounds and perspectives are valued and respected. Passion - We create an environment where our enthusiasm is contagious and an environment in which learning is fun. Innovation - We foster a creative environment that is always searching for new ways to share interactive STEM education with the community. To become a member of our team, apply online here: imaginationstationtoledo.org/join-the-team

NAICS: 712
NAICS Definition: Museums, Historical Sites, and Similar Institutions
Employees: 94
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/museum-of-human-rights-freedom-and-tolerance.jpeg
Museum of Human Rights, Freedom and Tolerance
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/imagination-station.jpeg
Imagination Station, Toledo's Science Center
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Museum of Human Rights, Freedom and Tolerance
100%
Compliance Rate
0/4 Standards Verified
Imagination Station, Toledo's Science Center
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Museums, Historical Sites, and Zoos Industry Average (This Year)

No incidents recorded for Museum of Human Rights, Freedom and Tolerance in 2025.

Incidents vs Museums, Historical Sites, and Zoos Industry Average (This Year)

No incidents recorded for Imagination Station, Toledo's Science Center in 2025.

Incident History — Museum of Human Rights, Freedom and Tolerance (X = Date, Y = Severity)

Museum of Human Rights, Freedom and Tolerance cyber incidents detection timeline including parent company and subsidiaries

Incident History — Imagination Station, Toledo's Science Center (X = Date, Y = Severity)

Imagination Station, Toledo's Science Center cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/museum-of-human-rights-freedom-and-tolerance.jpeg
Museum of Human Rights, Freedom and Tolerance
Incidents

No Incident

https://images.rankiteo.com/companyimages/imagination-station.jpeg
Imagination Station, Toledo's Science Center
Incidents

No Incident

FAQ

Imagination Station, Toledo's Science Center company demonstrates a stronger AI Cybersecurity Score compared to Museum of Human Rights, Freedom and Tolerance company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, Imagination Station, Toledo's Science Center company has disclosed a higher number of cyber incidents compared to Museum of Human Rights, Freedom and Tolerance company.

In the current year, Imagination Station, Toledo's Science Center company and Museum of Human Rights, Freedom and Tolerance company have not reported any cyber incidents.

Neither Imagination Station, Toledo's Science Center company nor Museum of Human Rights, Freedom and Tolerance company has reported experiencing a ransomware attack publicly.

Neither Imagination Station, Toledo's Science Center company nor Museum of Human Rights, Freedom and Tolerance company has reported experiencing a data breach publicly.

Neither Imagination Station, Toledo's Science Center company nor Museum of Human Rights, Freedom and Tolerance company has reported experiencing targeted cyberattacks publicly.

Neither Museum of Human Rights, Freedom and Tolerance company nor Imagination Station, Toledo's Science Center company has reported experiencing or disclosing vulnerabilities publicly.

Neither Museum of Human Rights, Freedom and Tolerance nor Imagination Station, Toledo's Science Center holds any compliance certifications.

Neither company holds any compliance certifications.

Neither Museum of Human Rights, Freedom and Tolerance company nor Imagination Station, Toledo's Science Center company has publicly disclosed detailed information about the number of their subsidiaries.

Imagination Station, Toledo's Science Center company employs more people globally than Museum of Human Rights, Freedom and Tolerance company, reflecting its scale as a Museums, Historical Sites, and Zoos.

Neither Museum of Human Rights, Freedom and Tolerance nor Imagination Station, Toledo's Science Center holds SOC 2 Type 1 certification.

Neither Museum of Human Rights, Freedom and Tolerance nor Imagination Station, Toledo's Science Center holds SOC 2 Type 2 certification.

Neither Museum of Human Rights, Freedom and Tolerance nor Imagination Station, Toledo's Science Center holds ISO 27001 certification.

Neither Museum of Human Rights, Freedom and Tolerance nor Imagination Station, Toledo's Science Center holds PCI DSS certification.

Neither Museum of Human Rights, Freedom and Tolerance nor Imagination Station, Toledo's Science Center holds HIPAA certification.

Neither Museum of Human Rights, Freedom and Tolerance nor Imagination Station, Toledo's Science Center holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.11.1, vllm has a critical remote code execution vector in a config class named Nemotron_Nano_VL_Config. When vllm loads a model config that contains an auto_map entry, the config class resolves that mapping with get_class_from_dynamic_module(...) and immediately instantiates the returned class. This fetches and executes Python from the remote repository referenced in the auto_map string. Crucially, this happens even when the caller explicitly sets trust_remote_code=False in vllm.transformers_utils.config.get_config. In practice, an attacker can publish a benign-looking frontend repo whose config.json points via auto_map to a separate malicious backend repo; loading the frontend will silently run the backend’s code on the victim host. This vulnerability is fixed in 0.11.1.

Published
Date
2025-12-01
Updated
Date
2025-12-01
Risk Information
cvss3
Base: 7.1
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
References
Description

fastify-reply-from is a Fastify plugin to forward the current HTTP request to another server. Prior to 12.5.0, by crafting a malicious URL, an attacker could access routes that are not allowed, even though the reply.from is defined for specific routes in @fastify/reply-from. This vulnerability is fixed in 12.5.0.

Published
Date
2025-12-01
Updated
Date
2025-12-01
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 21.0.2, 20.3.15, and 19.2.17, A Stored Cross-Site Scripting (XSS) vulnerability has been identified in the Angular Template Compiler. It occurs because the compiler's internal security schema is incomplete, allowing attackers to bypass Angular's built-in security sanitization. Specifically, the schema fails to classify certain URL-holding attributes (e.g., those that could contain javascript: URLs) as requiring strict URL security, enabling the injection of malicious scripts. This vulnerability is fixed in 21.0.2, 20.3.15, and 19.2.17.

Published
Date
2025-12-01
Updated
Date
2025-12-01
Risk Information
cvss4
Base: 8.5
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Gin-vue-admin is a backstage management system based on vue and gin. In 2.8.6 and earlier, attackers can delete any file on the server at will, causing damage or unavailability of server resources. Attackers can control the 'FileMd5' parameter to delete any file and folder.

Published
Date
2025-12-01
Updated
Date
2025-12-01
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Portkey.ai Gateway is a blazing fast AI Gateway with integrated guardrails. Prior to 1.14.0, the gateway determined the destination baseURL by prioritizing the value in the x-portkey-custom-host request header. The proxy route then appends the client-specified path to perform an external fetch. This can be maliciously used by users for SSRF attacks. This vulnerability is fixed in 1.14.0.

Published
Date
2025-12-01
Updated
Date
2025-12-01
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References