Eagle-themes Eagle Booking
4 CVEs affecting Eagle-themes Eagle Booking. Latest disclosed: 2026-06-26. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-68052 | High | 8.8 | 2026-06-26 | Unauthenticated Cross Site Request Forgery (CSRF) in Eagle Booking <= 1.3.4.3 versions. |
CVE-2026-27428 | High | 8.5 | 2026-03-05 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Eagle-Themes Eagle Booking eagle-booking allows SQL Injec… |
CVE-2025-68976 | Medium | 5.4 | 2025-12-30 | Missing Authorization vulnerability in Eagle-Themes Eagle Booking eagle-booking allows Exploiting Incorrectly Configured Access Control Security Levels.This is… |
CVE-2025-68975 | Medium | 4.3 | 2025-12-30 | Authorization Bypass Through User-Controlled Key vulnerability in Eagle-Themes Eagle Booking eagle-booking allows Exploiting Incorrectly Configured Access Cont… |