Browse all 3 CVE security advisories affecting ComMotion. AI-powered Chinese analysis, POCs, and references for each vulnerability.
ComMotion provides motion control and automation software for industrial systems. Historically, the organization has faced vulnerabilities including remote code execution, cross-site scripting, and privilege escalation, with three CVEs currently documented. The software's integration with industrial control systems presents potential risks for operational technology environments. While no major public security incidents have been reported, the presence of multiple CVEs indicates ongoing security challenges in their codebase. Organizations using ComMotion should implement network segmentation and regular patching to mitigate potential exploitation risks, particularly given the critical nature of industrial control systems where vulnerabilities could lead to physical safety concerns or operational disruptions.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-32508 | WordPress Course Booking System plugin <= 6.1.2 - Reflected Cross Site Scripting (XSS) Vulnerability — Course Booking SystemCWE-79 | 7.1 | High | 2025-04-17 |
| CVE-2025-32253 | WordPress Course Booking System Plugin <= 6.1 - Broken Access Control vulnerability — Course Booking SystemCWE-862 | 5.3 | Medium | 2025-04-04 |
| CVE-2025-22785 | WordPress Course Booking System plugin <= 6.0.6 - SQL Injection vulnerability — Course Booking SystemCWE-89 | 9.3 | Critical | 2025-01-15 |
This page lists every published CVE security advisory associated with ComMotion. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.