Efrotech Timetrax vulnerabilities
2 known vulnerabilities affecting efrotech/timetrax.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL2
Vulnerabilities
Page 1 of 1
CVE-2024-39250P2CRITICALCVSS 9.8PoCv8.32024-07-22
CVE-2024-39250 [CRITICAL] CWE-89 CVE-2024-39250: EfroTech Timetrax v8.3 was discovered to contain an unauthenticated SQL injection vulnerability via
EfroTech Timetrax v8.3 was discovered to contain an unauthenticated SQL injection vulnerability via the q parameter in the search web interface.
nvd
CVE-2025-46157P3CRITICALCVSS 9.9v1.02025-06-18
CVE-2025-46157 [CRITICAL] CWE-434 CVE-2025-46157: An issue in EfroTech Time Trax v.1.0 allows a remote attacker to execute arbitrary code via the file
An issue in EfroTech Time Trax v.1.0 allows a remote attacker to execute arbitrary code via the file attachment function in the leave request form
nvd