CVE-2024-48590 Information

Description

Inflectra SpiraTeam 7.2.00 is vulnerable to Server-Side Request Forgery (SSRF) via the NewsReaderService. This allows an attacker to escalate privileges and obtain sensitive information.

Reference

https://github.com/GCatt-AS/CVE-2024-48590/blob/main/README.md