Comparison Overview

act.3

VS

VML

act.3

Kรคthe-Dassler StraรŸe, Herzogenaurach, Bavaria, 91074, DE
Last Update: 2025-03-05 (UTC)
Between 900 and 1000
http://www.weareact3.com

Excellent

We are act.3 - We are a community of real people who turn our passion into impact. We shape the future of brands through people, community and culture. We make ideas happen. Our purpose is to enable each other and brands to create real change in peopleโ€™s lives, ultimately making our world a happier place. Community and culture are therefore a core part of our work. We approach cultural marketing holistically and have expertise in strategy, creative, and experiences. We are now a global community with an extensive international network. We collaborate with handpicked partners all over the world to bring beauty to the spheres of sport, culture, and sustainability. Originating from our headquarters in Herzogenaurach, today we have community bases in Berlin, Munich, Cologne, Paris, Lisbon, London, Amsterdam, Tel Aviv, Tokyo, Shanghai, Sydney, Rio De Janeiro, Sรฃo Paulo, Panama, NYC, Los Angeles & Cape Town.

NAICS: 541613
NAICS Definition: Marketing Consulting Services
Employees: 410
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

VML

3 WTC 175 Greenwich Street, New York, New York, undefined, US
Last Update: 2025-03-04 (UTC)

Excellent

Between 900 and 1000
http://www.vml.com

VML is a global powerhouse born from the unification of Wunderman Thompson and VMLY&R โ€” two of the world's most powerful and accomplished creative agencies with complementary capabilities and geographic strengths. We have an industry-unique opportunity to provide our client partners with a fully integrated offering across brand experience, customer experience and commerce practices โ€” powered by deep data and technology experience. For more information, visit www.vml.com.

NAICS: 541613
NAICS Definition: Marketing Consulting Services
Employees: 29,881
Subsidiaries: 35
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/act-ยณ-gmbh.jpeg
act.3
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/vmlyr.jpeg
VML
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
Compliance Summary
act.3
100%
Compliance Rate
0/4 Standards Verified
VML
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Advertising Services Industry Average (This Year)

No incidents recorded for act.3 in 2025.

Incidents vs Advertising Services Industry Average (This Year)

No incidents recorded for VML in 2025.

Incident History โ€” act.3 (X = Date, Y = Severity)

act.3 cyber incidents detection timeline including parent company and subsidiaries

Incident History โ€” VML (X = Date, Y = Severity)

VML cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/act-ยณ-gmbh.jpeg
act.3
Incidents

No Incident

https://images.rankiteo.com/companyimages/vmlyr.jpeg
VML
Incidents

No Incident

FAQ

Both act.3 company and VML company demonstrate a comparable AI risk posture, with strong governance and monitoring frameworks in place.

Historically, VML company has disclosed a higher number of cyber incidents compared to act.3 company.

In the current year, VML company and act.3 company have not reported any cyber incidents.

Neither VML company nor act.3 company has reported experiencing a ransomware attack publicly.

Neither VML company nor act.3 company has reported experiencing a data breach publicly.

Neither VML company nor act.3 company has reported experiencing targeted cyberattacks publicly.

Neither act.3 company nor VML company has reported experiencing or disclosing vulnerabilities publicly.

VML company has more subsidiaries worldwide compared to act.3 company.

VML company employs more people globally than act.3 company, reflecting its scale as a Advertising Services.

Latest Global CVEs (Not Company-Specific)

Description

Flowise is a drag & drop user interface to build a customized large language model flow. In versions prior to 3.0.8, WriteFileTool and ReadFileTool in Flowise do not restrict file path access, allowing authenticated attackers to exploit this vulnerability to read and write arbitrary files to any path in the file system, potentially leading to remote command execution. Flowise 3.0.8 fixes this vulnerability.

Published
Date
2025-10-08
Updated
Date
2025-10-08
Risk Information
cvss3
Base: 9.9
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
References
Description

A flaw has been found in code-projects E-Commerce Website 1.0. Affected is an unknown function of the file /pages/supplier_add.php. Executing manipulation of the argument supp_email can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used.

Published
Date
2025-10-08
Updated
Date
2025-10-08
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was detected in code-projects E-Commerce Website 1.0. This impacts an unknown function of the file /pages/product_add.php. Performing manipulation of the argument prod_name results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used.

Published
Date
2025-10-08
Updated
Date
2025-10-08
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security vulnerability has been detected in code-projects Voting System 1.0. This affects an unknown function of the file /admin/voters_add.php. Such manipulation of the argument photo leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed publicly and may be used.

Published
Date
2025-10-08
Updated
Date
2025-10-08
Risk Information
cvss2
Base: 5.8
Severity: LOW
AV:N/AC:L/Au:M/C:P/I:P/A:P
cvss3
Base: 4.7
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

MongoDB Connector for BI installation viaย MSIย on Windows leaves ACLs unset on custom install directories allows Privilege Escalation.This issue affects MongoDB Connector for BI: from 2.0.0 through 2.14.24.

Published
Date
2025-10-08
Updated
Date
2025-10-08
Risk Information
cvss4
Base: 8.8
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References