CVE-2026-27175: Improper Neutralization of Special Elements used in an OS Comman MajorDoMo, an open-source home automation platform developed by sergejey, suffers from a critical OS command injection vulnerability identified as CVE-2026-27175. The vulnerability exists in the rc/index.php endpoint, where the $param varia

MajorDoMo suffers CRITICAL OS command injection (CVSS 9.2). Unauthenticated RCE possible via rc/index.php & cycle_execs.php. Restrict access & sanitize inputs ASAP! radar.offseq.com/threat/cve-2026-27175-im... #OffSeq #CVE202627175 #SmartHomeSecurity