Comparison Overview

FlorStar Sales Inc.

VS

Ferguson

FlorStar Sales Inc.

1075 Taylor Rd, Romeoville, IL, 60446, US
Last Update: 2025-03-05 (UTC)
Between 900 and 1000
http://www.florstar.com

Excellent

FlorStar Sales, Inc. provides residential and commercial flooring solutions and a host of logistics services to our clients. FlorStar is more than just a flooring distributor. We are a business partner who values both vendors and customers. We offer high-quality flooring, flooring sundries, and acoustical-control products from reputable manufacturers. Our diversity allows FlorStar to provide clients floor covering distribution and technical solutions from the subfloor up.

NAICS: 424
NAICS Definition:
Employees: 84
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Ferguson

751 Lakefront Commons, Newport News, Virginia, 23606, US
Last Update: 2024-11-06 (UTC)

Strong

Between 800 and 900
https://bit.ly/3QqlCEY

Since 1953, Ferguson has been a source of quality supplies for a variety of industries, each working together to help build better infrastructure, better homes and better businesses. As a leading value-added distributor of residential and commercial plumbing supplies and pipe, valves and fittings in the U.S., we exist to make our customersโ€™ complex projects simple, successful and sustainable. Ferguson is proud to provide best-in-class products, service and capabilities across the following industries: Commercial/Mechanical, Facilities Supply, Fire and Fabrication, HVAC, Industrial, Residential Trade, Residential Building and Remodel, Waterworks and Residential Digital Commerce. Ferguson is part of Ferguson plc, which has approximately 36,000 associates across 1,700 locations and serves customers in all 50 states, Canada, Puerto Rico, Mexico and the Caribbean.

NAICS: 42
NAICS Definition: Wholesale Trade
Employees: 19,390
Subsidiaries: 10
12-month incidents
0
Known data breaches
1
Attack type number
1

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/florstar-sales-inc-.jpeg
FlorStar Sales Inc.
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/ferguson-official.jpeg
Ferguson
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
Compliance Summary
FlorStar Sales Inc.
100%
Compliance Rate
0/4 Standards Verified
Ferguson
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Wholesale Industry Average (This Year)

No incidents recorded for FlorStar Sales Inc. in 2025.

Incidents vs Wholesale Industry Average (This Year)

No incidents recorded for Ferguson in 2025.

Incident History โ€” FlorStar Sales Inc. (X = Date, Y = Severity)

FlorStar Sales Inc. cyber incidents detection timeline including parent company and subsidiaries

Incident History โ€” Ferguson (X = Date, Y = Severity)

Ferguson cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/florstar-sales-inc-.jpeg
FlorStar Sales Inc.
Incidents

No Incident

https://images.rankiteo.com/companyimages/ferguson-official.jpeg
Ferguson
Incidents

Date Detected: 4/2017
Type:Breach
Attack Vector: Unauthorized Access
Blog: Blog

FAQ

FlorStar Sales Inc. company company demonstrates a stronger AI risk posture compared to Ferguson company company, reflecting its advanced AI governance and monitoring frameworks.

Ferguson company has historically faced a number of disclosed cyber incidents, whereas FlorStar Sales Inc. company has not reported any.

In the current year, Ferguson company and FlorStar Sales Inc. company have not reported any cyber incidents.

Neither Ferguson company nor FlorStar Sales Inc. company has reported experiencing a ransomware attack publicly.

Ferguson company has disclosed at least one data breach, while FlorStar Sales Inc. company has not reported such incidents publicly.

Neither Ferguson company nor FlorStar Sales Inc. company has reported experiencing targeted cyberattacks publicly.

Neither FlorStar Sales Inc. company nor Ferguson company has reported experiencing or disclosing vulnerabilities publicly.

Ferguson company has more subsidiaries worldwide compared to FlorStar Sales Inc. company.

Ferguson company employs more people globally than FlorStar Sales Inc. company, reflecting its scale as a Wholesale.

Latest Global CVEs (Not Company-Specific)

Description

Flowise is a drag & drop user interface to build a customized large language model flow. In versions prior to 3.0.8, WriteFileTool and ReadFileTool in Flowise do not restrict file path access, allowing authenticated attackers to exploit this vulnerability to read and write arbitrary files to any path in the file system, potentially leading to remote command execution. Flowise 3.0.8 fixes this vulnerability.

Published
Date
2025-10-08
Updated
Date
2025-10-08
Risk Information
cvss3
Base: 9.9
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
References
Description

A flaw has been found in code-projects E-Commerce Website 1.0. Affected is an unknown function of the file /pages/supplier_add.php. Executing manipulation of the argument supp_email can lead to sql injection. The attack may be launched remotely. The exploit has been published and may be used.

Published
Date
2025-10-08
Updated
Date
2025-10-08
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was detected in code-projects E-Commerce Website 1.0. This impacts an unknown function of the file /pages/product_add.php. Performing manipulation of the argument prod_name results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used.

Published
Date
2025-10-08
Updated
Date
2025-10-08
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security vulnerability has been detected in code-projects Voting System 1.0. This affects an unknown function of the file /admin/voters_add.php. Such manipulation of the argument photo leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed publicly and may be used.

Published
Date
2025-10-08
Updated
Date
2025-10-08
Risk Information
cvss2
Base: 5.8
Severity: LOW
AV:N/AC:L/Au:M/C:P/I:P/A:P
cvss3
Base: 4.7
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

MongoDB Connector for BI installation viaย MSIย on Windows leaves ACLs unset on custom install directories allows Privilege Escalation.This issue affects MongoDB Connector for BI: from 2.0.0 through 2.14.24.

Published
Date
2025-10-08
Updated
Date
2025-10-08
Risk Information
cvss4
Base: 8.8
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References