Comparison Overview

Q: Between Springshare company and AtoZdatabases company, which one has the best AI Cybersecurity Score ?

Springshare company demonstrates a stronger AI Cybersecurity Score compared to AtoZdatabases company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Q: Between Springshare company and AtoZdatabases company, which one has experienced more cyber incidents in the past ?

Historically, AtoZdatabases company has disclosed a higher number of cyber incidents compared to Springshare company.

Q: Between Springshare company and AtoZdatabases company, which one has experienced more cyber incidents this year ?

In the current year, AtoZdatabases company and Springshare company have not reported any cyber incidents.

Q: Between Springshare company and AtoZdatabases company, which one has experienced at least one ransomware attack ?

Neither AtoZdatabases company nor Springshare company has reported experiencing a ransomware attack publicly.

Q: Between Springshare company and AtoZdatabases company, which one has experienced at least one data breach ?

Neither AtoZdatabases company nor Springshare company has reported experiencing a data breach publicly.

Q: Between Springshare company and AtoZdatabases company, which one has experienced at least one targeted cyberattack ?

Neither AtoZdatabases company nor Springshare company has reported experiencing targeted cyberattacks publicly.

Q: Between Springshare company and AtoZdatabases company, which one has experienced at least one vulnerability ?

Neither Springshare company nor AtoZdatabases company has reported experiencing or disclosing vulnerabilities publicly.

Q: Between Springshare company and AtoZdatabases company, which one holds the most compliance certifications ?

Neither Springshare nor AtoZdatabases holds any compliance certifications.

Q: Between Springshare company and AtoZdatabases company, which one has the most subsidiaries ?

Neither Springshare company nor AtoZdatabases company has publicly disclosed detailed information about the number of their subsidiaries.

Springshare

801 Brickell Ave, Miami, Florida, 33131, US

Last Update: 2025-11-22

View Profile

Between 750 and 799

http://www.springshare.com

Springshare is an internet software company focusing on developing engaging web applications for libraries and educational institutions. Springshare was founded in 2007 by Slaven Zivkovic, an ed-tech entrepreneur with a history of library innovations (and a history of working at libraries too - Slaven spent his undergraduate years as a library student assistant at his college library). Together with the select group of like-minded "Springys", the crew is creating cutting-edge library web apps and setting new standards for great customer service. Today, we're among the fastest growing library technology vendors, serving 4,800 Libraries in 78 countries. We're proud to serve libraries large and small - from many of the most prestigious universities worldwide to small community college campuses, public libraries of all sizes, special and government libraries, and many school and district libraries too. And the best part is, we're just getting started!

NAICS: 51912

NAICS Definition: Libraries and Archives

Employees: 61

Subsidiaries: 0

12-month incidents

0

Known data breaches

0

Attack type number

0

View Profile

AtoZdatabases

11211 John Galt Blvd, Omaha, NE, 68137, US

Last Update: 2025-11-27

Between 750 and 799

https://www.atozdatabases.com

What we do: Through our web platform, we provide access to: • 30 Million Business & Executive Profiles • 240 Million Resident Records • 7 Million Job/Internship Opportunities • Interview Tips & Résumé Templates • 7.9 Million Healthcare Professionals • 2 Million New Businesses • New Movers (200,000 added weekly) • New Homeowners (50,000 added weekly) • Background & Criminal Searching • Email Marketing Services and more! The database is ideal for creating Sales Leads and Mailing Lists, doing Market Research, Demographic Studies, finding Employment Opportunities and much more. Also, the application is available in Spanish! How to Access: If you are a member of a subscribing Library or Institution, you can access AtoZdatabases for free through the Institution’s website. If you are representing a Library, University, College or any Organization that is interested in evaluating AtoZdatabases with a Free 30-Day Trial, just give us a call at 877.428.0101 or email [email protected]

NAICS: 519

NAICS Definition:

Employees: 4

Subsidiaries: 0

12-month incidents

0

Known data breaches

0

Attack type number

0

Springshare

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

AtoZdatabases

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Libraries Industry Average (This Year)

No incidents recorded for Springshare in 2025.

Incidents vs Libraries Industry Average (This Year)

No incidents recorded for AtoZdatabases in 2025.

Incident History — Springshare (X = Date, Y = Severity)

Springshare cyber incidents detection timeline including parent company and subsidiaries

Incident History — AtoZdatabases (X = Date, Y = Severity)

AtoZdatabases cyber incidents detection timeline including parent company and subsidiaries

Springshare

Incidents

No Incident

AtoZdatabases

Incidents

No Incident

Springshare company demonstrates a stronger AI Cybersecurity Score compared to AtoZdatabases company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, AtoZdatabases company has disclosed a higher number of cyber incidents compared to Springshare company.

In the current year, AtoZdatabases company and Springshare company have not reported any cyber incidents.

Neither AtoZdatabases company nor Springshare company has reported experiencing a ransomware attack publicly.

Neither AtoZdatabases company nor Springshare company has reported experiencing a data breach publicly.

Neither AtoZdatabases company nor Springshare company has reported experiencing targeted cyberattacks publicly.

Neither Springshare company nor AtoZdatabases company has reported experiencing or disclosing vulnerabilities publicly.

Neither Springshare nor AtoZdatabases holds any compliance certifications.

Neither company holds any compliance certifications.

Neither Springshare company nor AtoZdatabases company has publicly disclosed detailed information about the number of their subsidiaries.

Springshare company employs more people globally than AtoZdatabases company, reflecting its scale as a Libraries.

Neither Springshare nor AtoZdatabases holds SOC 2 Type 1 certification.

Neither Springshare nor AtoZdatabases holds SOC 2 Type 2 certification.

Neither Springshare nor AtoZdatabases holds ISO 27001 certification.

Neither Springshare nor AtoZdatabases holds PCI DSS certification.

Neither Springshare nor AtoZdatabases holds HIPAA certification.

Neither Springshare nor AtoZdatabases holds GDPR certification.

Description

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.

Published

Date

2025-11-26

Updated

Date

2025-11-26

Risk Information

cvss4

Base: 7.7

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.

Published

Date

2025-11-26

Updated

Date

2025-11-26

Risk Information

cvss4

Base: 8.7

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.

Published

Date

2025-11-26

Updated

Date

2025-11-26

Risk Information

cvss4

Base: 6.3

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.

Published

Date

2025-11-26

Updated

Date

2025-11-26

Risk Information

cvss3

Base: 7.5

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References

Description

Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.

Published

Date

2025-11-26

Updated

Date

2025-11-26

Risk Information

cvss3

Base: 7.5

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Springshare

VS

AtoZdatabases

Springshare

AtoZdatabases

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Libraries Industry Average (This Year)

Incidents vs Libraries Industry Average (This Year)

Incident History — Springshare (X = Date, Y = Severity)

Incident History — AtoZdatabases (X = Date, Y = Severity)

Notable Incidents

No Incident

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2025-66035

Risk Information

CVE-2025-66031

Risk Information

CVE-2025-66030

Risk Information

CVE-2025-64344

Risk Information

CVE-2025-64335

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Springshare

VS

AtoZdatabases

Springshare

AtoZdatabases

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Libraries Industry Average (This Year)

Incidents vs Libraries Industry Average (This Year)

Incident History — Springshare (X = Date, Y = Severity)

Incident History — AtoZdatabases (X = Date, Y = Severity)

Notable Incidents

No Incident

No Incident

FAQ

Between Springshare company and AtoZdatabases company, which one has the best AI Cybersecurity Score ?

Between Springshare company and AtoZdatabases company, which one has experienced more cyber incidents in the past ?

Between Springshare company and AtoZdatabases company, which one has experienced more cyber incidents this year ?

Between Springshare company and AtoZdatabases company, which one has experienced at least one ransomware attack ?

Between Springshare company and AtoZdatabases company, which one has experienced at least one data breach ?

Between Springshare company and AtoZdatabases company, which one has experienced at least one targeted cyberattack ?

Between Springshare company and AtoZdatabases company, which one has experienced at least one vulnerability ?

Between Springshare company and AtoZdatabases company, which one holds the most compliance certifications ?

Between Springshare company and AtoZdatabases company, which one holds the fewest compliance certifications ?

Between Springshare company and AtoZdatabases company, which one has the most subsidiaries ?

Between Springshare company and AtoZdatabases company, which one has the largest number of employees ?

Between Springshare and AtoZdatabases, which company holds both SOC 2 Type 1 certifications ?

Between Springshare and AtoZdatabases, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — Springshare or AtoZdatabases ?

Which company is PCI DSS compliant — Springshare or AtoZdatabases ?

Between Springshare and AtoZdatabases, which company complies with HIPAA regulations for healthcare data ?

Between Springshare and AtoZdatabases, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2025-66035

Risk Information

CVE-2025-66031

Risk Information

CVE-2025-66030

Risk Information

CVE-2025-64344

Risk Information

CVE-2025-64335

Risk Information