Guest Worldwide is a global collective of dynamic, industry-leading companies with more than 40 years of unparalleled experience serving the unique needs of diverse markets in every corner of the world.
Recognized as one of Canada's fastest-growing hospitality, outdoor adventure and sports entertainment groups, we find our strength in our people and believe this is the foundation to our continued success. If you have a passion for taking care of people and creating unforgettable hospitality experiences, we invite you to explore a career with Northland Properties Corporation, the force behind such highly recognized brands as Sandman Hotel Group, The Sutton Place Hotels, Denny's, Moxies, Chop Steakhouse & Bar, Revelstoke Mountain Resort, Grouse Mountain, The Dallas Stars, and Northland Asset Management Company. Motivated by his family's long-standing legacy of caring for people, our founder, Bob Gaglardi, started Northland Properties Corporation in 1963 with a vision to build places where people could come together and experience great customer service. Proudly 100% Canadian and family-owned, today Northland Properties owns and operates 63 hotels and resorts, 175 restaurants and venues, and 3 hockey teams in 5 countries, and we're still growing.
Security & Compliance Standards Overview
No incidents recorded for Guest Worldwide, a Sysco company in 2025.
No incidents recorded for Northland Properties in 2025.
Guest Worldwide, a Sysco company cyber incidents detection timeline including parent company and subsidiaries
Northland Properties cyber incidents detection timeline including parent company and subsidiaries
The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘percentage’ parameter in all versions up to, and including, 5.4.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
The ComboServlet in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.2, 2023.Q3.1 through 2023.Q3.5, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not limit the number or size of the files it will combine, which allows remote attackers to create very large responses that lead to a denial of service attack via the URL query string.
A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and delete arbitrary directories on the target machine.
A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and create arbitrary directories on the target machine.
A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and delete arbitrary files on the target machine.
