What is the official website of OnePoint Patient Care ?

The official website of OnePoint Patient Care is http://www.onepointpatientcare.com.

What is OnePoint Patient Care's cybersecurity risk score?

OnePoint Patient Care has an AI-generated cybersecurity risk score of 717 out of 1000, indicating a Moderate security posture according to Rankiteo's assessment.

How many security incidents has OnePoint Patient Care experienced?

According to Rankiteo, OnePoint Patient Care currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has OnePoint Patient Care been affected by any supply chain cyber incidents ?

According to Rankiteo, OnePoint Patient Care has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does OnePoint Patient Care have SOC 2 Type 1 certification ?

According to Rankiteo, OnePoint Patient Care is not certified under SOC 2 Type 1.

Does OnePoint Patient Care have SOC 2 Type 2 certification ?

According to Rankiteo, OnePoint Patient Care does not hold a SOC 2 Type 2 certification.

Does OnePoint Patient Care comply with GDPR ?

According to Rankiteo, OnePoint Patient Care is not listed as GDPR compliant.

Does OnePoint Patient Care have PCI DSS certification ?

According to Rankiteo, OnePoint Patient Care does not currently maintain PCI DSS compliance.

Does OnePoint Patient Care comply with HIPAA ?

According to Rankiteo, OnePoint Patient Care is not compliant with HIPAA regulations.

Does OnePoint Patient Care have ISO 27001 certification ?

According to Rankiteo,OnePoint Patient Care is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does OnePoint Patient Care operate in ?

OnePoint Patient Care operates primarily in the Hospitals and Health Care industry.

How many employees does OnePoint Patient Care have ?

OnePoint Patient Care employs approximately 264 people worldwide.

Does OnePoint Patient Care own any subsidiaries ?

OnePoint Patient Care presently has no subsidiaries across any sectors.

How many LinkedIn followers does OnePoint Patient Care have ?

OnePoint Patient Care's official LinkedIn profile has approximately 2,829 followers.

What is the NAICS classification code for OnePoint Patient Care ?

OnePoint Patient Care is classified under the NAICS code 62, which corresponds to Health Care and Social Assistance.

Does OnePoint Patient Care have a Crunchbase profile ?

No, OnePoint Patient Care does not have a profile on Crunchbase.

Does OnePoint Patient Care have a LinkedIn profile ?

Yes, OnePoint Patient Care maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/onepoint-patient-care.

How many cybersecurity incidents has OnePoint Patient Care experienced ?

As of June 14, 2026, Rankiteo reports that OnePoint Patient Care has experienced 6 cybersecurity incidents.

How many peer or competitor companies does OnePoint Patient Care have ?

OnePoint Patient Care has an estimated 33,027 peer or competitor companies worldwide.

What types of cybersecurity incidents has OnePoint Patient Care faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Breach.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

OPC

Boost Score +25 with badge (5 left)

717

/1000

Moderate

742

/1000

Moderate

OnePoint Patient Care Vendor Cyber Rating & Cyber Score

onepointpatientcare.com

Add Your Compliance Badge

OnePoint Patient Care is the nation’s leading locally based hospice pharmacy serving over 65,000 patients per day across all service platforms. We're the nation’s only hospice-focused pharmacy capable of bundling a suite of services involving any combination of OnePoint local dispensing, clinical advice, delivery, mail order, clinical management and network pharmacy solutions. Our Customer Care Specialists make thousands of in-home and facility-based deliveries daily. We dispense and deliver medications locally, provide clinical guidance on every call and manage custom designed disease-state formularies for each and every hospice partner we serve. Serving the hospice community for over 25 years, OnePoint Patient Care has

OPC A.I CyberSecurity Scoring

Scoring History

OPC

OnePoint Patient Care CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

OnePoint Patient Ca...

Breach

8/2024

ONE441072525

OnePoint Patient Ca...

Breach

100

05/2023

PHA92124923

OnePoint Patient Ca...

Breach

3/2023

AME721072625

OnePoint Patient Ca...

Breach

100

3/2023

BRI1025072825

OnePoint Patient Ca...

Breach

3/2023

PHA111072625

CareMed Specialty P...

Breach

11/2017

CAR214919522

Loading…

A.I.

OPC Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for OPC

Incidents vs Hospitals and Health Care Industry Avg (This Year)

No incidents recorded for OnePoint Patient Care in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for OnePoint Patient Care in 2026.

Incident Types OPC vs Hospitals and Health Care Industry Avg (This Year)

No incidents recorded for OnePoint Patient Care in 2026.

Incident History - OPC (X = Date, Y = Severity)

Loading…

SUBSIDIARY

OnePoint Patient Care Subsidiaries

OPC

Hospitals and Health Care

Website: http://www.onepointpatientcare.com

Company Size: 201-500 employees

BrightSpring Health ServicesHospitals and Health Care

PharMericaPharmaceutical Manufacturing

Rehab Without Walls® Neuro RehabilitationHospitals and Health Care

Amerita, IncPharmaceutical Manufacturing

CareMed Specialty PharmacyPharmaceutical Manufacturing

Onco360 Oncology PharmacyPharmaceutical Manufacturing

Adoration HealthHospitals and Health Care

Sacred Journey HospiceHospitals and Health Care

Abode Care PartnersHospitals and Health Care

Haven HospiceHospitals and Health Care

Grane HospiceHospitals and Health Care

Rest AssuredHospitals and Health Care

Progressive Rehabilitation Associates, LLCMedical Practices

Generations Home and HospiceHospitals and Health Care

Starting Point Nursing ServicesHospitals and Health Care

SpringPath Mental Health ServicesMental Health Care

Robin Hill Farm, Inc. "A Brain Injury Residential Treatment and Rehabilitation Program"Hospitals and Health Care

Hospice Services of AlabamaHospitals and Health Care

At-Heart Homecare & HospiceHospitals and Health Care

Abilis Health PlanInsurance Carriers

Allay HospiceHospitals and Health Care

Allay Hospice VolunteersHospitals and Health Care

Ohio Valley HospiceHospitals and Health Care

ConnectMed360Pharmaceutical Manufacturing

Gateway Pediatric TherapyHospitals and Health Care

Rehab in MotionPhysical, Occupational and Speech Therapists

Pate RehabilitationHospitals and Health Care

Pharmacy AlternativesPharmaceutical Manufacturing

StepStone Family & Youth ServicesIndividual and Family Services

Apreva HospiceHospitals and Health Care

Abode HealthcareHospitals and Health Care

SpringHealth Behavioral Health & Integrated CareMental Health Care

CompassionCare HospiceHospitals and Health Care

Embrace HospiceHospitals and Health Care

ResCare Community LivingHospitals and Health Care

All Ways Caring HomeCareHospitals and Health Care

Loading…

OnePoint Patient Care Similar Companies

Cleveland Clinic

cb clevelandclinic.org

Cleveland Clinic, located in Cleveland, Ohio, is a not-for-profit, multispecialty academic medical center that integrates clinical and hospital care with research and education. Founded in 1921 by four renowned physicians with a vision of providing outstanding patient care based upon the principles of cooperation, compassion and innovation, Cleveland Clinic has become one of the largest and most respected hospitals in the country. Cleveland Clinic facilities can be found throughout Northeast Ohio, as well as around the country and world including: Cleveland Clinic Abu Dhabi Cleveland Clinic Canada Cleveland Clinic Florida Cleveland Clinic London Cleveland Clinic Lou Ruvo Center for Brain Health - Las Vegas

Clariane

cb clariane.com

A purpose-driven company, Clariane is the leading European community for care in times of vulnerability. Our Group’s purpose “To take care of each person’s humanity in times of vulnerability” is inspired by our three core values: trust, responsibility and initiative. With facilities at the heart of 700 cities and communities across six European countries, we are dedicated to standing alongside vulnerable individuals, ensuring our presence wherever they need us. Our expertise? Delivering our Positive Care approach through 3 areas of activity: - Care homes – we care. - Healthcare facilites and services – we cure. - Shared living solutions – we welcome and enliven. Relying on their diverse expertise, each year, our community unites, trains and supports around 63,000 employees who provide services to over 890,000 patients and residents in three main areas of activity: long-term care (Korian, Seniors Residencias, etc.), specialty care (Inicea, Ita, Grupo 5, Lebenswert, etc.), and community care (Âges & Vie...). In 2025, Clariane was awarded Top Employer certification in Europe and in each of the six countries where we operate: Germany (for the 5th consecutive year), France (for the 4th consecutive year), Belgium and Italy (for the 3rd consecutive years), and Spain and the Netherlands (for the 1st time). Our actions are guided every day by five key commitments: consideration, equity, innovation, proximity and sustainability. Our Clariane community: at your side, at every moment. #ClarianeAtYourSide #WeAreClariane #PurposeDrivenCompany

Oregon Health & Science University

ohsu.edu

At OHSU, we deliver breakthroughs for better health. We're driven by the belief that better health starts with innovations in the lab, in the classroom, at the bedside and in our communities. From cancer to Alzheimer's to cardiovascular care, we collaborate every day to identify and deliver new ways to understand disease, treat illness and train the next generation of scientists and health professionals. It takes all of us - from scientists, clinicians and nurses to a top-notch professional staff. Join us.

Genesis

genesishcc.com

As a premier care provider since 1985, Genesis HealthCare is a holding company with subsidiaries that, on a combined basis, provide services to skilled nursing facilities and senior living communities. Genesis also specializes in contract rehabilitation therapy, respiratory therapy, physician services, staffing services and accountable care. Mission Statement: We improve the lives we touch through the delivery of high-quality healthcare and everyday compassion. We care about fostering an environment where our employees, patients, and visitors can be their authentic selves and feel celebrated and welcomed. By raising awareness about diversity, equity, and inclusion, we aim to enhance teamwork and synergy among staff. Diversity, Equity, and Inclusion (DEI) is part of our organization’s DNA! View our job opportunities at www.genesiscareers.jobs.

UW Health

uwhealth.org

UW Health is an integrated academic health system that is home to the No. 1 hospital in Wisconsin (for the 14th year in a row) as ranked by U.S. News & World Report. We’re made up of six main hospitals, one JOA partner hospital in Madison and two hospitals located within the main hospital in Illinois. We also have more than 90 clinics across Wisconsin and northern Illinois. UW Health cares for more than 832,000 patients each year and employs more than 25,500 people — one of the region’s largest employers. Many of our 1,800 physicians are faculty members at the University of Wisconsin School of Medicine and Public Health, one of the nation’s highly regarded medical schools. UW Health is the Official Health Care Partner of the Green Bay Packers.

Norton Healthcare

cb NortonHealthcare.com

Norton Healthcare is a leader in serving adult and pediatric patients from throughout Greater Louisville, Southern Indiana, the commonwealth of Kentucky and beyond. The not-for-profit hospital and health care system is Louisville’s second largest employer, with more than 18,600 employees, over 1,750 employed medical providers and nearly 3,000 total providers on its medical staff. Norton Healthcare has five Louisville-based hospitals with a total of 1,907 licensed beds. Norton West Louisville Hospital is scheduled to open in late 2024. The system also includes eight outpatient centers, 18 Norton Immediate Care Centers, eight Norton Prompt Care at Walgreens clinics and an expanded telehealth program. It provides care at more than 350 locations throughout Kentucky and Southern Indiana. The hospitals provide inpatient and outpatient general care as well as specialty care including heart, neuroscience, cancer, orthopedic, women’s and pediatric services. A strong research program provides access to clinical trials in a multitude of areas. Norton King’s Daughters’ Health in Madison, Indiana, also is part of Norton Healthcare. Read more at KDHMadison.org/About-Us. Since 2018, Norton Healthcare’s five Louisville hospitals and Norton Cancer Institute have been named LGBTQ+ Healthcare Equality Leaders by the Human Rights Campaign Foundation, earning a top score of 100 on the Healthcare Equality Index (HEI). Norton Healthcare also was recognized in 2022 as one of the “Best Places to Work for Disability Inclusion” by the Disability Equality Index. To learn more about career opportunities, visit NortonHealthcareCareers.com.

Sanford Health

sanfordhealth.org

Sanford Health is the largest rural health system in the U.S. Our organization is dedicated to transforming the health care experience and providing access to world-class health care in America’s heartland. Headquartered in Sioux Falls, South Dakota, we serve more than one million patients and 220,000 health plan members across 250,000 square miles. Our integrated health system has 47 medical centers, 2,800 physicians and advanced practice providers, 170 clinical investigators and research scientists, more than 200 Good Samaritan Society senior care locations, and world clinics in eight countries around the globe. Learn more about our commitment to shaping the future of rural health care at sanfordhealth.org or Sanford Health News.

Hartford HealthCare

cb hartfordhealthcare.org

With 44,000 dedicated colleagues and a bold vision for the future, Hartford HealthCare is transforming healthcare across Connecticut and beyond—enhancing access, affordability, health equity, and excellence. Spanning 500 locations across 185 towns and cities, our comprehensive care-delivery system is built to serve every community, every day. From world-class hospitals—including two tertiary-level teaching hospitals, an acute-care community teaching hospital, an acute-care hospital and trauma center, and three community hospitals—to an expansive network of behavioral health services, multispecialty physician groups, urgent and virtual care, surgery centers, home care, senior care, rehabilitation, and mobile neighborhood health programs, Hartford HealthCare is there when and where it matters most. We touch the lives of nearly 28,000 people every single day, delivering unparalleled care through our unique Institute Model—bringing together leading experts in neuroscience, cancer, digestive health, heart and vascular care, orthopedics, and urology & kidney health to provide a unified, high standard of care at the most affordable cost. Recognized nationally for patient safety and clinical excellence, Hartford HealthCare boasts Leapfrog A-ratings across all our hospitals—making us one of the safest healthcare systems in the country.

GeBBS Healthcare Solutions

gebbs.com

GeBBS Healthcare Solutions is a KLAS rated leading provider of Revenue Cycle Management (RCM) services and Risk Adjustment solutions. GeBBS’ innovative technology, combined with over 14,000-strong global workforce, helps clients improve financial performance, adhere to compliance, and enhance the patient experience. Headquartered in East Haven, CT, GeBBS is backed by EQT, one of the premier private equity funds in Europe. GeBBS has won numerous accolades for its medical coding outsourcing and medical billing outsourcing, including being ranked in Modern Healthcare’s Top 10 Largest RCM Firms, Black Book Market Research’s Top 20 RCM Outsourcing Services, and Inc. 5000’s fastest growing private companies in the U.S. For more information, please visit www.gebbs.com.

Loading…

NEWS

OnePoint Patient Care CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

December 17, 2025 08:00 AM

Securing Smart Speakers for Home Health Care: NIST Offers New Guidelines

Smart home devices, such as voice-activated digital assistants, are increasingly used to support home health care. Cybersecurity and privacy...

Read Article

November 26, 2025 08:00 AM

Emergency alerts go dark after cyberattack on OnSolve CodeRED

Cyberattack on OnSolve CodeRED disrupted emergency alert services for U.S. state, local, police, and fire agencies.

Read Article

July 10, 2025 07:00 AM

Hackers Target Eldercare Homes

Several nursing homes and eldercare facilities have suffered cyberattacks in recent months, with hackers stealing the personal, financial and medical...

Read Article

July 09, 2025 07:00 AM

Trump bill will have major impact on health care cybersecurity, experts warn Congress

Witnesses at a Senate hearing Wednesday connected One Big Beautiful Bill provisions to potential cyber issues in the health care sector,...

Read Article

May 27, 2025 07:00 AM

OnePoint Patient Care Unveils OneConnectPoint Version 3.0

Featuring Cost-Saving Alternatives and A.I.-Powered Clinical Support TEMPE, ARIZONA / ACCESS Newswire / May 27, 2025 / OnePoint Patient Care...

Read Article

April 29, 2025 07:00 AM

DaVita hack hasn’t impacted patient care, but may have exposed data

A ransomware attack on major dialysis provider DaVita highlights the growing threat of cyberattacks on third-party healthcare vendors.

Read Article

April 14, 2025 07:00 AM

South African telecom provider Cell C disclosed a data breach following a cyberattack

Cell C, one of the biggest telecom providers in South Africa confirms a data breach following a 2024 cyberattack.

Read Article

March 19, 2025 07:00 AM

The Biggest Healthcare Data Breaches of 2024

In 2024, there were 14 data breaches involving more than 1 million healthcare records, including the biggest healthcare data breach of all time.

Read Article

January 30, 2025 08:00 AM

2024 Healthcare Data Breach Report

Large healthcare data breaches continue to be reported to the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) in...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-12175

SUMMARY

A vulnerability was detected in CodeAstro Student Attendance Management System 1.0. Impacted is an unknown function of the file /attendance-php/Admin/createStudents.php. Performing a manipulation of the argument admissionNumber results in sql injection. Remote exploitation of the attack is possible. The exploit is now public and may be used.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 4.7)

cvss2

Base Score: 5.8

Complexity: LOW

AV:N/AC:L/Au:M/C:P/I:P/A:P

cvss3

Base Score: 4.7

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 2.0

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

1.2

REFERENCES

CVE-2026-12174

SUMMARY

A security vulnerability has been detected in D-Link DCS-935L 1.10.01. This issue affects the function snprintf of the file /web/cgi-bin/greece/rhea of the component HTTP Handler. Such manipulation of the argument data leads to format string. The attack may be launched remotely. The exploit has been disclosed publicly and may be used.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 8.8)

cvss2

Base Score: 9.0

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:C/A:C

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 7.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

2.8

REFERENCES

CVE-2026-12183

SUMMARY

Nefteprodukttekhnika BUK TS-G Gas Station Automation System 2.9.1 through 2.10.2 on Linux contains an Improper Authentication vulnerability (CWE-287) in the system configuration module. The /php/ajax-login.php endpoint returns userid=1 (administrator) in response to any HTTP POST request that supplies arbitrary credentials (e.g., action=dologin&login=<any_value>&pwd=<any_value>), and subsequent privileged endpoints under /php/ajax-main.php and /modules/* do not validate a server-side session. A remote unauthenticated attacker can invoke any administrative action exposed by the configuration module, including reading and modifying user rules, fuel tank gauges, fuel dispensers, relays, cash registers, bank terminals, fuel cards, price and customer displays, cash collection, and pricing rules.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 9.8)

cvss3

Base Score: 9.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 9.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

3.9

REFERENCES

CVE-2026-6428

SUMMARY

SQL Injection in reports/catalogue_out.pl in Koha Community Koha through 22.11.37, 23.x, 24.x before 24.11.16, 25.05.x before 25.05.11, 25.11.x before 25.11.05, 26.05.x before 26.05.01, and 26.11.x before 26.11.00 allows an authenticated staff user with the Reports module flag to read arbitrary data from the Koha application database via the Filter URL parameter when the Criteria parameter matches /branchcode/. The vulnerable sink in sub calculate concatenates the unmodified Filter request parameter directly into a LIKE clause of the auxiliary $strsth2 statement and executes it via DBI without bound parameters: my $f = @$filters[0]; $f =~ s/\*/%/g; $strsth2 .= " AND $column LIKE '$f' "; This enables error-based SQL injection (e.g., via EXTRACTVALUE) and full read access to sensitive tables including borrowers (password hashes, 2FA secrets, PII), borrower_password_recovery, api_keys, and sessions. Proof of concept (error-based, single request): GET /cgi-bin/koha/reports/catalogue_out.pl?do_it=1&output=screen&Limit=10&Criteria=branchcode&Filter=x'+AND+EXTRACTVALUE(1,CONCAT(0x7e,VERSION(),0x7c,USER(),0x7c,DATABASE(),0x7e))--+- Cookie: CGISESSID=<LIBRARIAN_SESSION> The response body contains the DBI exception leaking the MariaDB version, database user, client IP, and database name, after which arbitrary data can be paged out using LIMIT n,1 / SUBSTRING(...). The vulnerable sink was introduced in commit 6bb77ae3e4 (2008-07-09); CVE-2015-4633 patched the same class in sibling files but did not generalise the fix to reports/catalogue_out.pl. Fixed in Koha 22.11.38, 24.11.16, 25.05.11, 25.11.05, 26.05.01, and 26.11.00 by replacing the raw concatenation with a parameterised placeholder.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 7.6)

cvss2

Base Score: 7.5

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:N/A:P

cvss3

Base Score: 7.6

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L

cvss4

Base Score: 5.6

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:X/V:C/RE:X/U:Amber

Impact Score

4.7

Exploitability

2.8

REFERENCES

CVE-2026-5513

SUMMARY

The Online Scheduling and Appointment Booking System – Bookly plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'bookly-customer-full-name' cookie in versions up to, and including, 27.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. Exploitation requires 'Remember personal information in cookies' setting to be enabled (disabled by default).

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 7.2)

cvss3

Base Score: 7.2

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

Impact Score

2.7

Exploitability

3.9

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…