PT-2026-23268 · Eagle Themes · Eagle Booking
Bonds
·
Publicado
2026-03-05
·
Atualizado
2026-03-05
·
CVE-2026-27428
CVSS v3.1
8.5
Alta
| Vetor | AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L |
Name of the Vulnerable Software and Affected Versions
Eagle-Themes Eagle Booking versions through 1.3.4.3
Description
Eagle-Themes Eagle Booking contains a flaw due to improper neutralization of special elements used in an SQL command, which allows for SQL Injection. The issue impacts the application's handling of SQL queries, potentially allowing an attacker to manipulate database operations.
Recommendations
Update Eagle-Themes Eagle Booking to a version later than 1.3.4.3.
Correção
SQL injection
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Eagle Booking