Unauthorized content alteration bug found in NSA platform

Attackers could exploit the flaw, which stemmed from inadequate CSRF protections primarily in SkillTree endpoints for state-changing operations, to spread misinformation and prompt training disruptions.

Article Link: Unauthorized content alteration bug found in NSA platform | SC Media