VYPR
Vendor

Inflectra

Products
1
CVEs
2
Across products
2
Status
Private

Products

1

Recent CVEs

2
  • CVE-2024-48590CriMar 20, 2025
    risk 0.64cvss 9.8epss 0.01

    Inflectra SpiraTeam 7.2.00 is vulnerable to Server-Side Request Forgery (SSRF) via the NewsReaderService. This allows an attacker to escalate privileges and obtain sensitive information.

  • CVE-2024-48591MedMar 20, 2025
    risk 0.40cvss 6.1epss 0.00

    Inflectra SpiraTeam 7.2.00 is vulnerable to Cross Site Scripting (XSS). A specially crafted SVG file can be uploaded that will render and execute JavaScript upon direct viewing.