Comparison Overview

Recipe

VS

madrid

Recipe

21 Stephen Street, London, England, W1T 1LN, GB
Last Update: 2025-03-05 (UTC)
Between 900 and 1000
https://www.reci.pe

Excellent

Normal work is never as effective as you’d hope, and making work in the normal way is never as efficient. At Recipe we’re not normal. We didn’t start in the normal way. We don’t make work in the normal way. We don’t make normal work. No outsourcing. No losing control. No wastage. No hierarchy. No egos. So if you are after normal, apologies for wasting your time and have a good day.

NAICS: 541613
NAICS Definition: Marketing Consulting Services
Employees: 107
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

madrid

Madrid, ES
Last Update: 2025-03-15 (UTC)

Excellent

Between 900 and 1000
http://www.digitalmarketingawards.org

En Novadect somos especialistas en investigaciones relativas a la propiedad industrial e intelectual. Nuestro equipo está integrado por abogados, criminólogos y detectives privados, todos ellos con formación específica y amplia experiencia en este sector. Desarrollamos unos servicios especiales en función de las necesidades que se requiera nuestra intervención, como servicios de antipiratería destinados a la defensa de los derechos de propiedad industrial e intelectual.

NAICS: 541
NAICS Definition:
Employees: 10,001+
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/recipelondon.jpeg
Recipe
ISO 27001
Not verified
SOC 2
Not verified
GDPR
No public badge
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/madrid.jpeg
madrid
ISO 27001
Not verified
SOC 2
Not verified
GDPR
No public badge
PCI DSS
No public badge
Compliance Summary
Recipe
100%
Compliance Rate
0/4 Standards Verified
madrid
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Advertising Services Industry Average (This Year)

No incidents recorded for Recipe in 2025.

Incidents vs Advertising Services Industry Average (This Year)

No incidents recorded for madrid in 2025.

Incident History — Recipe (X = Date, Y = Severity)

Recipe cyber incidents detection timeline including parent company and subsidiaries

Incident History — madrid (X = Date, Y = Severity)

madrid cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/recipelondon.jpeg
Recipe
Incidents

No Incident

https://images.rankiteo.com/companyimages/madrid.jpeg
madrid
Incidents

No Incident

FAQ

Both Recipe company and madrid company demonstrate a comparable AI risk posture, with strong governance and monitoring frameworks in place.

Historically, madrid company has disclosed a higher number of cyber incidents compared to Recipe company.

In the current year, madrid company and Recipe company have not reported any cyber incidents.

Neither madrid company nor Recipe company has reported experiencing a ransomware attack publicly.

Neither madrid company nor Recipe company has reported experiencing a data breach publicly.

Neither madrid company nor Recipe company has reported experiencing targeted cyberattacks publicly.

Neither Recipe company nor madrid company has reported experiencing or disclosing vulnerabilities publicly.

Neither Recipe company nor madrid company has publicly disclosed detailed information about the number of their subsidiaries.

Recipe company employs more people globally than madrid company, reflecting its scale as a Advertising Services.

Latest Global CVEs (Not Company-Specific)

Description

Formbricks is an open source qualtrics alternative. Prior to version 4.0.1, Formbricks is missing JWT signature verification. This vulnerability stems from a token validation routine that only decodes JWTs (jwt.decode) without verifying their signatures. Both the email verification token login path and the password reset server action use the same validator, which does not check the token’s signature, expiration, issuer, or audience. If an attacker learns the victim’s actual user.id, they can craft an arbitrary JWT with an alg: "none" header and use it to authenticate and reset the victim’s password. This issue has been patched in version 4.0.1.

Published
Date
2025-09-26
Updated
Date
2025-09-26
Risk Information
cvss3
Base: 9.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L
References
Description

Apollo Studio Embeddable Explorer & Embeddable Sandbox are website embeddable software solutions from Apollo GraphQL. Prior to Apollo Sandbox version 2.7.2 and Apollo Explorer version 3.7.3, a cross-site request forgery (CSRF) vulnerability was identified. The vulnerability arises from missing origin validation in the client-side code that handles window.postMessage events. A malicious website can send forged messages to the embedding page, causing the victim’s browser to execute arbitrary GraphQL queries or mutations against their GraphQL server while authenticated with the victim’s cookies. This issue has been patched in Apollo Sandbox version 2.7.2 and Apollo Explorer version 3.7.3.

Published
Date
2025-09-26
Updated
Date
2025-09-26
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:N
References
Description

A security vulnerability has been detected in Portabilis i-Educar up to 2.10. Affected by this vulnerability is an unknown functionality of the file /consulta-dispensas. Such manipulation leads to improper authorization. The attack may be launched remotely. The exploit has been disclosed publicly and may be used.

Published
Date
2025-09-26
Updated
Date
2025-09-26
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A weakness has been identified in Portabilis i-Educar up to 2.10. Affected is an unknown function of the file /module/Api/aluno. This manipulation of the argument aluno_id causes improper authorization. The attack may be initiated remotely. The exploit has been made available to the public and could be exploited.

Published
Date
2025-09-26
Updated
Date
2025-09-26
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security flaw has been discovered in Tencent WeKnora 0.1.0. This impacts the function testEmbeddingModel of the file /api/v1/initialization/embedding/test. The manipulation of the argument baseUrl results in server-side request forgery. The attack can be launched remotely. The exploit has been released to the public and may be exploited. It is advisable to upgrade the affected component. The vendor responds: "We have confirmed that the issue mentioned in the report does not exist in the latest releases".

Published
Date
2025-09-26
Updated
Date
2025-09-26
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References