EUVD-2001-1119

Malware in sbrugna...

Malicious code in @zalastax/nolb-randy (npm)

The package @zalastax/nolb-randy was found to contain malicious code...

MAL-2025-13644 Malicious code in @zalastax/nolb-randy (npm)

The package @zalastax/nolb-randy was found to contain malicious code...

MAL-2025-36091 Malicious code in test-mlw2-randy-scapa (npm)

The package test-mlw2-randy-scapa was found to contain malicious code...

Malicious code in test-mlw2-randy-scapa (npm)

The package test-mlw2-randy-scapa was found to contain malicious code...

randyhutto.com Cross Site Scripting vulnerability OBB-3853661

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in josecoelho, Randy Hoyt, steveclarkcouk, Vitaliy Kukin, Eric Le Bail, Tom Ransom Category Meta plugin plugin = 1.2.8 versions...

CVE-2022-35890

An issue was discovered in Inductive Automation Ignition before 7.9.20 and 8.x before 8.1.17. Designer and Vision Client Session IDs are mishandled. An attacker can determine which session IDs were generated in the past and then hijack sessions assigned to these IDs via Randy...

CVE-2022-35890

An issue was discovered in Inductive Automation Ignition before 7.9.20 and 8.x before 8.1.17. Designer and Vision Client Session IDs are mishandled. An attacker can determine which session IDs were generated in the past and then hijack sessions assigned to these IDs via Randy...

Design/Logic Flaw

An issue was discovered in Inductive Automation Ignition before 7.9.20 and 8.x before 8.1.17. Designer and Vision Client Session IDs are mishandled. An attacker can determine which session IDs were generated in the past and then hijack sessions assigned to these IDs via Randy...

WordPress Randy Peterman Murph StatTraq SQL Injection Vulnerability

WordPress is a blogging platform based on the PHP language, which can be used to set up a website on a server that supports PHP and MySQL databases, and can also be used as a content management system CMS. A SQL injection vulnerability exists in WordPress Randy Peterman Murph StatTraq. An attacke...

Randy Bias joins Wallarm board of advisers

Menlo Park, California — December 5, 2017 — Wallarm today announced that Randy Bias, Vice President of Technology and Strategy, Cloud Software at Juniper and founder of Cloudscaling acquired by EMC, has joined Wallarm’s board of advisers. “Randy is an agile cloud pioneer and a thought leader in...

Verizon Patches XSS Issues in its Messaging Client

Verizon late last year patched a vulnerability in its Message+ messaging client that could have allowed an attacker to take over a session and possibly extend their reach into a user’s account management settings. Researcher Randy Westergren yesterday disclosed some details on the bug, which coul...

Threat Outbreak Alert RuleID13697: Email Messages Distributing Malicious Software on February 24, 2015

Medium Alert ID: 37568 First Published: 2015 February 24 18:21 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID13697 may contain the following files: Name |...

PCI Community Meeting - EMV Chip Update

Randy Vanderhoof, Executive Director, EMV Migration Forum EMF, presented the EMV Chip Update today at Day Two of the PCI Community Meeting. The session provided attendees with insights into the EMV chip migration process in the U.S. and how this impacts PCI security efforts...

SA-CONTRIB-2014-021 - Maestro - Cross Site Scripting (XSS)

The Maestro module enables you to create complex workflows, automating business processes. The module doesn't sufficiently filter Role or Organic Group names when displaying them in the workflow details. This vulnerability is mitigated by the fact that an attacker must have a role with the...

SA-CONTRIB-2012-094 - Maestro module - Cross Site Request Forgery (CSRF), Cross Site Scripting (XSS)

The Maestro module is a workflow engine/solution that facilitates simple and complex business process automation. The module doesn't sufficiently filter user-supplied data in its admin screens leading to a Cross Site Scripting XSS vulnerability. A Cross Site Request Forgery vulnerability in the...

US CERT Director Resigns Without Warning

Randy Vickers, the director of the United States Computer Emergency Readiness Team US Cert abruptly abandoned his post on Friday when he tendered his resignation immediately. The resignation came via an email penned by acting assistant secretary for cybersecurity and communications, Bobbie...

Unfixed XSS vulnerability at www.randyblue.com

Security researcher TreX, has submitted on 19/12/2007 a cross-site-scripting XSS vulnerability affecting www.randyblue.com, which at the time of submission ranked 7879 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 24/12/2007. It is currently...

Unfixed XSS vulnerability at www.randyblue.com

Security researcher TreX, has submitted on 19/12/2007 a cross-site-scripting XSS vulnerability affecting www.randyblue.com, which at the time of submission ranked 7879 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 24/12/2007. It is currently...