Strong
Be the BOSS of your BBQ with Pit Boss Grills. Offering the best value per sq. inch in the pellet grill industry, Pit Boss is the proud manufacturer of the Wood Pellet Series and the Ceramic Charcoal Barbecue Series.
Strong
We are Rodan + Fields, founded by Stanford-trained dermatologists with a mission to revolutionize skincare for women everywhere. Our products are dermatologist-developed and inspired by Women-Backed Scienceโข, delivering real, visible results. We understand what works for womenโs skin, from acne to the signs of aging, and are dedicated to providing safe, effective solutions that truly work. As the #1 Female Dermatologist-Founded Skincare Brand in the US*, we continue to innovate and grow. With over 12 million customers and more than 15 years of proven results, Rodan + Fields is committed to delivering the best for your skin. We value diversity and inclusivity and are always looking for passionate individuals who want to make a meaningful impact. If youโre driven by science and skincare, and want to help women achieve healthy, glowing skin, weโd love to have you with us. *For more details visit our website
Security & Compliance Standards Overview
No incidents recorded for Pit Boss Grills in 2025.
No incidents recorded for Rodan + Fields in 2025.
Pit Boss Grills cyber incidents detection timeline including parent company and subsidiaries
Rodan + Fields cyber incidents detection timeline including parent company and subsidiaries
Last 3 Security & Risk Events by Company
Improper Protection Against Voltage and Clock Glitches in FPGA devices, could allow an attacker with physical access to undervolt the platform resulting in a loss of confidentiality.
Malicious code was inserted into the Nx (build system) package and several related plugins. The tampered package was published to the npm software registry, via a supply-chain attack. Affected versions contain code that scans the file system, collects credentials, and posts them to GitHub as a repo under user's accounts.
Flag Forge is a Capture The Flag (CTF) platform. In versions from 2.1.0 to before 2.3.0, the API endpoint GET /api/problems/:id returns challenge hints in plaintext within the question object, regardless of whether the user has unlocked them via point deduction. Users can view all hints for free, undermining the business logic of the platform and reducing the integrity of the challenge system. This issue has been patched in version 2.3.0.
Flag Forge is a Capture The Flag (CTF) platform. In version 2.1.0, the /api/admin/assign-badge endpoint lacks proper access control, allowing any authenticated user to assign high-privilege badges (e.g., Staff) to themselves. This could lead to privilege escalation and impersonation of administrative roles. This issue has been patched in version 2.2.0.
parse is a package designed to parse JavaScript SDK. A Prototype Pollution vulnerability in the SingleInstanceStateController.initializeState function of parse version 5.3.0 and before allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service (DoS) as the minimum consequence.
