Efrotech: Security Vulnerabilities
An issue in EfroTech Time Trax v.1.0 allows a remote attacker to execute arbitrary code via the file attachment function in the leave request form
CVSS Score
9.9
EPSS Score
0.001
Published
2025-06-18
EfroTech Timetrax v8.3 was discovered to contain an unauthenticated SQL injection vulnerability via the q parameter in the search web interface.
CVSS Score
9.8
EPSS Score
0.809
Published
2024-07-22