CVE-2025-3708 – Le-Yan Le-Show Medical SQL Injection Vulnerability

May 2, 2025

CVE ID : CVE-2025-3708

Published : May 2, 2025, 4:15 a.m. | 4 hours, 59 minutes ago

Description : Le-show medical practice management system from Le-yan has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents.

Severity: 9.8 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-3707 – Sunnet eHDR CTMS SQL Injection

Next Article CVE-2025-3709 – Agentflow from Flowring Technology Account Lockout Bypass Vulnerability

Highlights

CVE-2025-2811 – “GL.iNet Router Regular Expression Complexity Inefficient Vulnerability”

April 26, 2025

CVE ID : CVE-2025-2811

Published : April 26, 2025, 7:15 a.m. | 4 hours, 49 minutes ago

Description : A vulnerability was found in GL.iNet GL-A1300 Slate Plus, GL-AR300M16 Shadow, GL-AR300M Shadow, GL-AR750 Creta, GL-AR750S-EXT Slate, GL-AX1800 Flint, GL-AXT1800 Slate AX, GL-B1300 Convexa-B, GL-B3000 Marble, GL-BE3600 Slate 7, GL-E750, GL-E750V2 Mudi, GL-MT300N-V2 Mango, GL-MT1300 Beryl, GL-MT2500 Brume 2, GL-MT3000 Beryl AX, GL-MT6000 Flint 2, GL-SFT1200 Opal, GL-X300B Collie, GL-X750 Spitz, GL-X3000 Spitz AX, GL-XE300 Puli and GL-XE3000 Puli AX 4.x. It has been declared as problematic. This vulnerability affects unknown code of the component API. The manipulation leads to inefficient regular expression complexity. It is recommended to upgrade the affected component.

Severity: 5.7 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Skywings Marketing – Best SEO Company in Ghaziabad for Proven Digital Growth

April 17, 2025

Whisp, a Pure PHP SSH server, with Ashley Hindle

April 15, 2025

ByteDance Introduces Seed1.5-VL: A Vision-Language Foundation Model Designed to Advance General-Purpose Multimodal Understanding and Reasoning

May 15, 2025

15 Essential Skills to Look for When Hiring Node.js Developers for Enterprise Projects (2025-2026)

African training program creates developers with cloud-native skills

React.js for SaaS Platforms: How Top Development Teams Help Startups Launch Faster

Upwork Freelancers vs Dedicated React.js Teams: What’s Better for Your Project in 2025?

LastPass can now warn or block logins to shadow SaaS apps – here’s how

Get up to a year of Adobe Creative Cloud access for 40% off

Got 6 hours? This free AI training from Google and Goodwill can boost your resume today

Why I recommend this budget phone with a paper-like screen over ‘minimalist’ devices

Laravel Boost, your AI coding starter kit

Laravel Boost, your AI coding starter kit

Using GitHub Copilot in VS Code

Optimizely Mission Control – Part I

Top 20 kubectl Commands Every Kubernetes Beginner Must Know

Top 20 kubectl Commands Every Kubernetes Beginner Must Know

Microsoft’s record stock run collides with Nadella’s admission that 15,000 layoffs still ‘hurt’

Microsoft and Adobe Power Up Fantasy Premier League Fans with AI – Here’s How

CVE-2025-3708 – Le-Yan Le-Show Medical SQL Injection Vulnerability

PlayPraetor Android Trojan Infects 11,000+ Devices via Fake Google Play Pages and Meta Ads

The Wild West of Shadow IT

CVE-2025-46777 – Fortinet FortiPortal Information Disclosure Vulnerability

APT28 Cyber Espionage Campaign Targets French Institutions Since 2021

CVE-2025-47706 – Drupal Enterprise MFA – TFA Authentication Bypass by Capture-replay Vulnerability

CVE-2025-32707 – Windows NTFS Out-of-bounds Read Privilege Elevation

CVE-2025-2811 – “GL.iNet Router Regular Expression Complexity Inefficient Vulnerability”

Skywings Marketing – Best SEO Company in Ghaziabad for Proven Digital Growth

Whisp, a Pure PHP SSH server, with Ashley Hindle

ByteDance Introduces Seed1.5-VL: A Vision-Language Foundation Model Designed to Advance General-Purpose Multimodal Understanding and Reasoning

CVE-2025-3708 – Le-Yan Le-Show Medical SQL Injection Vulnerability

Related Posts