Attackers could exploit the flaw, which stemmed from inadequate CSRF protections primarily in SkillTree endpoints for state-changing operations, to spread misinformation and prompt training disruptions.

Article Link: Unauthorized content alteration bug found in NSA platform | SC Media

1 post – 1 participant

Read full topic

​Attackers could exploit the flaw, which stemmed from inadequate CSRF protections primarily in SkillTree endpoints for state-changing operations, to spread misinformation and prompt training disruptions.
Article Link: Unauthorized content alteration bug found in NSA platform | SC Media
1 post – 1 participant
Read full topic