Comparison Overview

Fischer Plumbing

VS

D.R. Horton

Fischer Plumbing

undefined, undefined, undefined, 98107, US
Last Update: 2025-03-10 (UTC)
Between 900 and 1000
http://fischerplumbing.com

Excellent

Fischer Plumbing is a locally-owned and operated residential plumbing contractor. We have been in business since the 1970s, and we are proud and protective of our long-standing reputation for operating with the utmost of integrity. We respect every one of our clients, and we are recognized experts in all areas of plumbing such as sewer repair, drain services, home furnace repair, and copper re-piping services. We provide plumbing services as Seattle plumbers to communities in the Bellevue area and as far north as Everett and far south as Renton. We excel at personal service to all of our customers with the highest quality materials in the industry. Please do not hesitate to give us a call if you have any questions whatsoever, and we will work diligently to show you why we are one of the best plumbing service companies in the entire area.

NAICS: 23
NAICS Definition:
Employees: 24
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

D.R. Horton

1341 Horton Circle, Arlington, TX, 76011, US
Last Update: 2025-03-04 (UTC)

Excellent

Between 900 and 1000
https://www.drhorton.com/

America's Builder is a lofty title, but it's a goal we work toward every day. D.R. Horton started in 1978 in Fort Worth, Texas, and has grown into a national Fortune 500 company. Since 2002, D.R. Horton has been the number one homebuilder in America. We build across the country, bringing our homes to new markets and acquiring like-minded home builders. Through our success, our founding vision hasn't changed. We don't stop building. Wherever the housing market finds itself, we are working to make sure there is a home available for our buyers when they need it. Because we believe homeownership is for everyone, our product lines range from entry-level to luxury. Come work with us or join the team. We'll be happy to show you why we are America's Builder.

NAICS: 23
NAICS Definition: Construction
Employees: 11,796
Subsidiaries: 4
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/fischer-plumbing.jpeg
Fischer Plumbing
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/dr-horton.jpeg
D.R. Horton
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
Compliance Summary
Fischer Plumbing
100%
Compliance Rate
0/4 Standards Verified
D.R. Horton
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Construction Industry Average (This Year)

No incidents recorded for Fischer Plumbing in 2025.

Incidents vs Construction Industry Average (This Year)

No incidents recorded for D.R. Horton in 2025.

Incident History โ€” Fischer Plumbing (X = Date, Y = Severity)

Fischer Plumbing cyber incidents detection timeline including parent company and subsidiaries

Incident History โ€” D.R. Horton (X = Date, Y = Severity)

D.R. Horton cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/fischer-plumbing.jpeg
Fischer Plumbing
Incidents

No Incident

https://images.rankiteo.com/companyimages/dr-horton.jpeg
D.R. Horton
Incidents

No Incident

FAQ

Both Fischer Plumbing company and D.R. Horton company demonstrate a comparable AI risk posture, with strong governance and monitoring frameworks in place.

Historically, D.R. Horton company has disclosed a higher number of cyber incidents compared to Fischer Plumbing company.

In the current year, D.R. Horton company and Fischer Plumbing company have not reported any cyber incidents.

Neither D.R. Horton company nor Fischer Plumbing company has reported experiencing a ransomware attack publicly.

Neither D.R. Horton company nor Fischer Plumbing company has reported experiencing a data breach publicly.

Neither D.R. Horton company nor Fischer Plumbing company has reported experiencing targeted cyberattacks publicly.

Neither Fischer Plumbing company nor D.R. Horton company has reported experiencing or disclosing vulnerabilities publicly.

D.R. Horton company has more subsidiaries worldwide compared to Fischer Plumbing company.

D.R. Horton company employs more people globally than Fischer Plumbing company, reflecting its scale as a Construction.

Latest Global CVEs (Not Company-Specific)

Description

Better Auth is an authentication and authorization library for TypeScript. In versions prior to 1.3.26, unauthenticated attackers can create or modify API keys for any user by passing that user's id in the request body to the `api/auth/api-key/create` route. `session?.user ?? (authRequired ? null : { id: ctx.body.userId })`. When no session exists but `userId` is present in the request body, `authRequired` becomes false and the user object is set to the attacker-controlled ID. Server-only field validation only executes when `authRequired` is true (lines 280-295), allowing attackers to set privileged fields. No additional authentication occurs before the database operation, so the malicious payload is accepted. The same pattern exists in the update endpoint. This is a critical authentication bypass enabling full an unauthenticated attacker can generate an API key for any user and immediately gain complete authenticated access. This allows the attacker to perform any action as the victim user using the api key, potentially compromise the user data and the application depending on the victim's privileges. Version 1.3.26 contains a patch for the issue.

Published
Date
2025-10-09
Updated
Date
2025-10-09
Risk Information
cvss4
Base: 9.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Allstar is a GitHub App to set and enforce security policies. In versions prior to 4.5, a vulnerability in Allstarโ€™s Reviewbot component caused inbound webhook requests to be validated against a hard-coded, shared secret. The value used for the secret token was compiled into the Allstar binary and could not be configured at runtime. In practice, this meant that every deployment using Reviewbot would validate requests with the same secret unless the operator modified source code and rebuilt the component - an expectation that is not documented and is easy to miss. All Allstar releases prior to v4.5 that include the Reviewbot code path are affected. Deployments on v4.5 and later are not affected. Those who have not enabled or exposed the Reviewbot endpoint are not exposed to this issue.

Published
Date
2025-10-09
Updated
Date
2025-10-09
Risk Information
cvss4
Base: 4.6
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Multiple cross-site scripting (XSS) vulnerabilities with Calendar events in Liferay Portal 7.4.3.35 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.5, 2023.Q3.1 through 2023.Q3.7, 7.4 update 35 through update 92, and 7.3 update 25 through update 36 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a userโ€™s (1) First Name, (2) Middle Name or (3) Last Name text field.

Published
Date
2025-10-09
Updated
Date
2025-10-09
Risk Information
cvss4
Base: 4.8
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Python Social Auth is a social authentication/registration mechanism. In versions prior to 5.6.0, upon authentication, the user could be associated by e-mail even if the `associate_by_email` pipeline was not included. This could lead to account compromise when a third-party authentication service does not validate provided e-mail addresses or doesn't require unique e-mail addresses. Version 5.6.0 contains a patch. As a workaround, review the authentication service policy on e-mail addresses; many will not allow exploiting this vulnerability.

Published
Date
2025-10-09
Updated
Date
2025-10-09
Risk Information
cvss4
Base: 6.3
Severity: HIGH
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Confidential Containers's Trustee project contains tools and components for attesting confidential guests and providing secrets to them. In versions prior to 0.15.0, the attestation-policy endpoint didn't check if the kbs-client submitting the request was actually authenticated (had the right key). This allowed any kbs-client to actually change the attestation policy. Version 0.15.0 fixes the issue.

Published
Date
2025-10-09
Updated
Date
2025-10-09
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References