Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.5
Eagle Booking allows hackers to access sensitive data
CVE-2026-27428
Summary
A security flaw in Eagle Booking makes it possible for hackers to access sensitive data by manipulating the way the software interacts with its database. This could allow an attacker to view or even delete important information. Update to the latest version of Eagle Booking to fix this issue.
Original title
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Eagle-Themes Eagle Booking eagle-booking allows SQL Injection.This issue affects Eagle Booking:...
Original description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Eagle-Themes Eagle Booking eagle-booking allows SQL Injection.This issue affects Eagle Booking: from n/a through <= 1.3.4.3.
Vulnerability type
CWE-89
SQL Injection
Published: 5 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026