All 8 CVE vulnerabilities found in MajorDoMo, with AI-generated Chinese analysis, references, and POCs.
Vendor: sergejey
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-27181 | MajorDoMo Unauthenticated Module Uninstall via Market Endpoint CWE-862 | 7.5 | High | 2026-02-18 |
| CVE-2026-27180 | MajorDoMo Supply Chain Remote Code Execution via Update URL Poisoning CWE-494 | 9.8 | Critical | 2026-02-18 |
| CVE-2026-27179 | MajorDoMo Unauthenticated SQL Injection in Commands Module CWE-89 | 8.2 | High | 2026-02-18 |
| CVE-2026-27177 | MajorDoMo Stored Cross-Site Scripting via Property Set Endpoint CWE-79 | 7.2 | High | 2026-02-18 |
| CVE-2026-27178 | MajorDoMo Stored Cross-Site Scripting via Method Parameters to Shoutbox CWE-79 | 7.2 | High | 2026-02-18 |
| CVE-2026-27176 | MajorDoMo Reflected Cross-Site Scripting in command.php CWE-79 | 6.1 | Medium | 2026-02-18 |
| CVE-2026-27175 | MajorDoMo Command Injection in rc/index.php via Race Condition CWE-78 | 9.8 | Critical | 2026-02-18 |
| CVE-2026-27174 | MajorDoMo Unauthenticated Remote Code Execution via Admin Console Eval CWE-94 | 9.8 | Critical | 2026-02-18 |
All 8 known CVE vulnerabilities affecting MajorDoMo with full Chinese analysis, references, and POCs where available.