Dark Reading

What's Bugging the NSA? A Vuln in Its 'SkillTree' Training Platform

The National Security Agency (NSA) has patched a cross-site request forgery (CSRF) vulnerability in its open source employee training platform known as SkillTree, showcasing how difficult this class ...