{"vulnerability": "CVE-2024-48591", "sightings": [{"uuid": "5a32ab8e-1041-4da7-aab8-f9bf655bf286", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-48591", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114195569830574577", "content": "", "creation_timestamp": "2025-03-20T15:55:12.424879Z"}, {"uuid": "e85a532a-80ba-40fb-bacb-0499b62ebf88", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-48591", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lkt6skia6a2e", "content": "", "creation_timestamp": "2025-03-20T17:08:51.083302Z"}, {"uuid": "a1e8aad0-2db4-4bb1-9be9-0a1763b8c9cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-48591", "type": "seen", "source": "https://t.me/cvedetector/20739", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48591 - Inflectra SpiraTeam Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-48591 \nPublished : March 20, 2025, 3:15 p.m. | 54\u00a0minutes ago \nDescription : Inflectra SpiraTeam 7.2.00 is vulnerable to Cross Site Scripting (XSS). A specially crafted SVG file can be uploaded that will render and execute JavaScript upon direct viewing. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-20T17:24:00.000000Z"}, {"uuid": "8941ef67-a829-49e2-a936-a4b7a1b45956", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-48591", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/8205", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-48591\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Inflectra SpiraTeam 7.2.00 is vulnerable to Cross Site Scripting (XSS). A specially crafted SVG file can be uploaded that will render and execute JavaScript upon direct viewing.\n\ud83d\udccf Published: 2025-03-20T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-20T14:45:05.940Z\n\ud83d\udd17 References:\n1. https://github.com/GCatt-AS/CVE-2024-48591", "creation_timestamp": "2025-03-20T15:18:16.000000Z"}]}