CVE-2025-3243

MEDIUM

code-projects Patient Record Management System 1.0 - SQL Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2025-3243. PoCs published by TeneBrae93, ladosudeste, manus-use.

AI-analyzed exploit summary This is a functional Python exploit for CVE-2025-32433, targeting a vulnerability in Erlang's SSH library to achieve pre-authentication remote code execution via a malformed SSH_MSG_CHANNEL_REQUEST packet. It sends a reverse shell payload using netcat.

Description

A vulnerability was found in code-projects Patient Record Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /dental_form.php. The manipulation of the argument itr_no/dental_no leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Exploits (3)

nomisec WORKING POC 7 stars
by TeneBrae93 · poc
https://github.com/TeneBrae93/CVE-2025-3243

This is a functional Python exploit for CVE-2025-32433, targeting a vulnerability in Erlang's SSH library to achieve pre-authentication remote code execution via a malformed SSH_MSG_CHANNEL_REQUEST packet. It sends a reverse shell payload using netcat.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Erlang SSH library
No auth needed
Prerequisites: Python 3 · Network access to target SSH service · Netcat listener on attacker machine
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec SCANNER
by ladosudeste · poc
https://github.com/ladosudeste/CVE-2025-3243

This repository contains a Python script designed to check for potential exposure to CVE-2025-3243, a vulnerability in the Erlang/OTP SSH Client. The script tests SSH connectivity, captures banners, and measures response times without exploiting the vulnerability.

Classification
Scanner 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Erlang/OTP SSH Client
No auth needed
Prerequisites: Python 3.8+ · OpenSSH Client · Linux/Unix-like system
devstral-2 · analyzed Feb 16, 2026 Full analysis →
github WORKING POC
by manus-use · postscriptpoc
https://github.com/manus-use/cve-pocs/tree/main/Erlang-OTP-SSH-CVE-2025-3243

The repository contains a functional exploit for CVE-2025-32433, targeting Erlang/OTP SSH. The PoC demonstrates a pre-authentication RCE by sending crafted SSH packets to execute arbitrary commands on the server.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Erlang/OTP SSH (OTP-22.3.4.17)
No auth needed
Prerequisites: Network access to the target SSH port (2222) · Vulnerable Erlang/OTP SSH version
devstral-2 · analyzed Feb 27, 2026 Full analysis →

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry technical-description
https://vuldb.com/?id.303269
Permissions Required, VDB Entry signature permissions-required
https://vuldb.com/?ctiid.303269
Third Party Advisory, VDB Entry third-party-advisory
https://vuldb.com/?submit.547882
Product product
https://code-projects.org/

Scores

CVSS v3 6.3
EPSS 0.0002
EPSS Percentile 3.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-74 CWE-89
Status published
Products (1)
code-projects/patient_record_management_system 1.0
Published Apr 04, 2025
Tracked Since Feb 18, 2026