Tennessee Valley Authority: Admin.MyTVA.com Customer lookup and internal notes bypass
The admin.mytva.com site had a vulnerability that allowed an attacker to bypass the login and access admin-only endpoints. This could lead to unauthorized access to customer information and the ability to add internal notes...