Efrann

**Name of the Vulnerable Software and Affected Versions** EfroTech Timetrax version 8.3 **Description** The issue is related to an unauthenticated SQL injection vulnerability. This vulnerability can be exploited via the `q` parameter in the search web interface. **Recommendations** For EfroTech Timetrax version 8.3, consider restricting access to the search web interface until a patch is available. As a temporary workaround, avoid using the `q` parameter in the search web interface to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.