Comparison Overview

Yami

VS

Delivery Hero

Yami

140 S State College Blvd, Greater Los Angeles, California, 92821, US
Last Update: 2025-03-12 (UTC)
Between 800 and 900
http://www.yamibuy.com/

Strong

Founded in 2013, Yamiโ€™s mission is to bring the world closer for everyone to experience and enjoy. We make it easy to discover exciting flavors and trending products from across the pacific. Named Inc. Magazineโ€™s fastest growing start-up on the โ€Inc. 500 List.โ€, weโ€™re committed to connecting people with authentic food, beauty, home, and wellness experiences through our e-commerce platform, iOS, and Android apps. Join us to unbox the best of Asia. Learn more at Yamibuy.com

NAICS: None
NAICS Definition:
Employees: 331
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Delivery Hero

Oranienburger StraรŸe 70, Berlin, Berlin, 10117, DE
Last Update: 2025-03-12 (UTC)

Strong

Between 800 and 900
http://www.deliveryhero.com

As the worldโ€™s leading local delivery platform, our mission is to deliver an amazing experience, fast, easy, and to your door. We operate in over 70+ countries worldwide, powered by tech but driven by people. As one of Europeโ€™s largest tech platforms, we enable ambitious talent to deliver solutions that create impact within our ecosystem. We move fast, take action and adapt. No matter where youโ€™re from or what you believe in, we build, we deliver, we lead. We are Delivery Hero.

NAICS: 513
NAICS Definition: Others
Employees: 35,649
Subsidiaries: 4
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/yamibuy-com.jpeg
Yami
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/delivery-hero-se.jpeg
Delivery Hero
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
Compliance Summary
Yami
100%
Compliance Rate
0/4 Standards Verified
Delivery Hero
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Technology, Information and Internet Industry Average (This Year)

No incidents recorded for Yami in 2025.

Incidents vs Technology, Information and Internet Industry Average (This Year)

No incidents recorded for Delivery Hero in 2025.

Incident History โ€” Yami (X = Date, Y = Severity)

Yami cyber incidents detection timeline including parent company and subsidiaries

Incident History โ€” Delivery Hero (X = Date, Y = Severity)

Delivery Hero cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/yamibuy-com.jpeg
Yami
Incidents

No Incident

https://images.rankiteo.com/companyimages/delivery-hero-se.jpeg
Delivery Hero
Incidents

No Incident

FAQ

Both Yami company and Delivery Hero company demonstrate a comparable AI risk posture, with strong governance and monitoring frameworks in place.

Historically, Delivery Hero company has disclosed a higher number of cyber incidents compared to Yami company.

In the current year, Delivery Hero company and Yami company have not reported any cyber incidents.

Neither Delivery Hero company nor Yami company has reported experiencing a ransomware attack publicly.

Neither Delivery Hero company nor Yami company has reported experiencing a data breach publicly.

Neither Delivery Hero company nor Yami company has reported experiencing targeted cyberattacks publicly.

Neither Yami company nor Delivery Hero company has reported experiencing or disclosing vulnerabilities publicly.

Delivery Hero company has more subsidiaries worldwide compared to Yami company.

Delivery Hero company employs more people globally than Yami company, reflecting its scale as a Technology, Information and Internet.

Latest Global CVEs (Not Company-Specific)

Description

Flowise is a drag & drop user interface to build a customized large language model flow. In versions prior to 3.0.8, WriteFileTool and ReadFileTool in Flowise do not restrict file path access, allowing authenticated attackers to exploit this vulnerability to read and write arbitrary files to any path in the file system, potentially leading to remote command execution. Flowise 3.0.8 fixes this vulnerability.

Published
Date
2025-10-08
Updated
Date
2025-10-08
Risk Information
cvss3
Base: 9.9
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
References
Description

A flaw has been found in code-projects E-Commerce Website 1.0. Affected is an unknown function of the file /pages/supplier_add.php. Executing manipulation of the argument supp_email can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used.

Published
Date
2025-10-08
Updated
Date
2025-10-08
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was detected in code-projects E-Commerce Website 1.0. This impacts an unknown function of the file /pages/product_add.php. Performing manipulation of the argument prod_name results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used.

Published
Date
2025-10-08
Updated
Date
2025-10-08
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security vulnerability has been detected in code-projects Voting System 1.0. This affects an unknown function of the file /admin/voters_add.php. Such manipulation of the argument photo leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed publicly and may be used.

Published
Date
2025-10-08
Updated
Date
2025-10-08
Risk Information
cvss2
Base: 5.8
Severity: LOW
AV:N/AC:L/Au:M/C:P/I:P/A:P
cvss3
Base: 4.7
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

MongoDB Connector for BI installation viaย MSIย on Windows leaves ACLs unset on custom install directories allows Privilege Escalation.This issue affects MongoDB Connector for BI: from 2.0.0 through 2.14.24.

Published
Date
2025-10-08
Updated
Date
2025-10-08
Risk Information
cvss4
Base: 8.8
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References