Browse all 4 CVE security advisories affecting Rymera Web Co. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Rymera Web Co develops custom web applications and e-commerce platforms for clients. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation and access control flaws. The company has four CVEs on record, with notable issues including stored XSS in their content management system and RCE through insecure deserialization in their API endpoints. While no major public security incidents have been documented, their vulnerability history suggests a pattern of insufficient security testing in development cycles, particularly regarding injection flaws and session management weaknesses.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-38745 | WordPress Wholesale Suite plugin <= 2.1.12 - Broken Access Control vulnerability — Wholesale SuiteCWE-862 | 5.3 | Medium | 2024-11-01 |
| CVE-2022-34344 | WordPress Wholesale Suite Plugin <= 2.1.5 is vulnerable to Broken Access Control — Wholesale Suite – WooCommerce Wholesale Prices, B2B, Catalog Mode, Order Form, Wholesale User Roles, Dynamic Pricing & MoreCWE-862 | 5.4 | Medium | 2024-01-08 |
| CVE-2022-41640 | WordPress Wholesale Suite Plugin <= 2.1.5 is vulnerable to Cross Site Scripting (XSS) — Wholesale SuiteCWE-79 | 6.5 | Medium | 2023-05-09 |
| CVE-2022-43481 | WordPress Advanced Coupons for WooCommerce Coupons plugin <= 4.5 - Cross-Site Request Forgery (CSRF) vulnerability — Advanced Coupons (WordPress plugin)CWE-352 | 5.4 | Medium | 2022-11-08 |
This page lists every published CVE security advisory associated with Rymera Web Co. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.