Comparison Overview

Socrates Sculpture Park

VS

KidsQuest Children's Museum

Socrates Sculpture Park

PO Box 6259, 32-01 Vernon Boulevard, Long Island City, NY 11106, US
Last Update: 2025-12-03
View Profile
Between 750 and 799
http://www.socratessculpturepark.org

For over 35 years, Socrates Sculpture Park has been an award winning model of public art production, community activism, and socially inspired place making. Most recently Socrates was honored with the Public Art Dialogue 2023 Founders Award. Over 1,200 artists have created and exhibited new works on its five waterfront acres and outdoor studio facilities. Past exhibiting artists include Agnes Denes, Jeffrey Gibson, Guadalupe Maravilla, Virginia Overton, Jean Shin, Sable Elyse Smith, Nari Ward, Meg Webster, and Hank Willis Thomas. Socrates is free and open to the public 365 days a year from 9am to sunset. It is located at 32-01 Vernon Boulevard (at Broadway) in Long Island City, New York. Socrates Sculpture Park is a not for profit organization licensed by NYC Parks to manage and program Socrates Sculpture Park, a New York City public park.

NAICS: 712
NAICS Definition:
Employees: 15
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

KidsQuest Children's Museum

1116 108th Ave NE, None, Bellevue, WA, US, 98004
Last Update: 2025-12-02
Between 700 and 749
https://www.kidsquestmuseum.org/

KidsQuest Children's Museum is a 501(c)(3) non-profit organization whose mission is to create learning through the power of play and exploration that connects children to their communities and the world. This innovative hands-on museum for children and families was designed to engage kids from infancy to age ten. Art, science, technology and daily life experiences are integrated in world-class exhibits with strong ties to the Pacific Northwest.

NAICS: 712
NAICS Definition: Museums, Historical Sites, and Similar Institutions
Employees: 33
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
1

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/socrates-sculpture-park.jpeg
Socrates Sculpture Park
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/kidsquestchildrensmuseum.jpeg
KidsQuest Children's Museum
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Socrates Sculpture Park
100%
Compliance Rate
0/4 Standards Verified
KidsQuest Children's Museum
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Museums, Historical Sites, and Zoos Industry Average (This Year)

No incidents recorded for Socrates Sculpture Park in 2025.

Incidents vs Museums, Historical Sites, and Zoos Industry Average (This Year)

No incidents recorded for KidsQuest Children's Museum in 2025.

Incident History — Socrates Sculpture Park (X = Date, Y = Severity)

Socrates Sculpture Park cyber incidents detection timeline including parent company and subsidiaries

Incident History — KidsQuest Children's Museum (X = Date, Y = Severity)

KidsQuest Children's Museum cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/socrates-sculpture-park.jpeg
Socrates Sculpture Park
Incidents

No Incident

https://images.rankiteo.com/companyimages/kidsquestchildrensmuseum.jpeg
KidsQuest Children's Museum
Incidents

Date Detected: 2/2020
Type:Ransomware
Blog: Blog

FAQ

Socrates Sculpture Park company demonstrates a stronger AI Cybersecurity Score compared to KidsQuest Children's Museum company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

KidsQuest Children's Museum company has historically faced a number of disclosed cyber incidents, whereas Socrates Sculpture Park company has not reported any.

In the current year, KidsQuest Children's Museum company and Socrates Sculpture Park company have not reported any cyber incidents.

KidsQuest Children's Museum company has confirmed experiencing a ransomware attack, while Socrates Sculpture Park company has not reported such incidents publicly.

Neither KidsQuest Children's Museum company nor Socrates Sculpture Park company has reported experiencing a data breach publicly.

Neither KidsQuest Children's Museum company nor Socrates Sculpture Park company has reported experiencing targeted cyberattacks publicly.

Neither Socrates Sculpture Park company nor KidsQuest Children's Museum company has reported experiencing or disclosing vulnerabilities publicly.

Neither Socrates Sculpture Park nor KidsQuest Children's Museum holds any compliance certifications.

Neither company holds any compliance certifications.

Neither Socrates Sculpture Park company nor KidsQuest Children's Museum company has publicly disclosed detailed information about the number of their subsidiaries.

KidsQuest Children's Museum company employs more people globally than Socrates Sculpture Park company, reflecting its scale as a Museums, Historical Sites, and Zoos.

Neither Socrates Sculpture Park nor KidsQuest Children's Museum holds SOC 2 Type 1 certification.

Neither Socrates Sculpture Park nor KidsQuest Children's Museum holds SOC 2 Type 2 certification.

Neither Socrates Sculpture Park nor KidsQuest Children's Museum holds ISO 27001 certification.

Neither Socrates Sculpture Park nor KidsQuest Children's Museum holds PCI DSS certification.

Neither Socrates Sculpture Park nor KidsQuest Children's Museum holds HIPAA certification.

Neither Socrates Sculpture Park nor KidsQuest Children's Museum holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-9 and 6.9.13-34, there is a vulnerability in ImageMagick’s Magick++ layer that manifests when Options::fontFamily is invoked with an empty string. Clearing a font family calls RelinquishMagickMemory on _drawInfo->font, freeing the font string but leaving _drawInfo->font pointing to freed memory while _drawInfo->family is set to that (now-invalid) pointer. Any later cleanup or reuse of _drawInfo->font re-frees or dereferences dangling memory. DestroyDrawInfo and other setters (Options::font, Image::font) assume _drawInfo->font remains valid, so destruction or subsequent updates trigger crashes or heap corruption. This vulnerability is fixed in 7.1.2-9 and 6.9.13-34.

Published
Date
2025-12-02
Updated
Date
2025-12-02
Risk Information
cvss3
Base: 4.9
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
References
Description

FeehiCMS version 2.1.1 has a Remote Code Execution via Unrestricted File Upload in Ad Management. FeehiCMS version 2.1.1 allows authenticated remote attackers to upload files that the server later executes (or stores in an executable location) without sufficient validation, sanitization, or execution restrictions. An authenticated remote attacker can upload a crafted PHP file and cause the application or web server to execute it, resulting in remote code execution (RCE).

Published
Date
2025-12-02
Updated
Date
2025-12-02
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
References
Description

PHPGurukul Billing System 1.0 is vulnerable to SQL Injection in the admin/index.php endpoint. Specifically, the username parameter accepts unvalidated user input, which is then concatenated directly into a backend SQL query.

Published
Date
2025-12-02
Updated
Date
2025-12-02
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
References
Description

NMIS/BioDose software V22.02 and previous versions contain executable binaries with plain text hard-coded passwords. These hard-coded passwords could allow unauthorized access to both the application and database.

Published
Date
2025-12-02
Updated
Date
2025-12-02
Risk Information
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

NMIS/BioDose V22.02 and previous versions' installation directory paths by default have insecure file permissions, which in certain deployment scenarios can enable users on client workstations to modify the program executables and libraries.

Published
Date
2025-12-02
Updated
Date
2025-12-02
Risk Information
cvss3
Base: 8.0
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
cvss4
Base: 7.1
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References