Improve readability

Author: martindg

trainingportal/static/lessons/cvss/cvss_3_score_1.md

@@ -2,6 +2,10 @@
 
 Score the following scenario using the CVSS v4.0 calculator [https://www.first.org/cvss/calculator/4-0](https://www.first.org/cvss/calculator/4-0).
 
+<br><br>
+
 ### Scenario
 
-Unauthenticated attacker can list registered users of a SaaS offering.
+Unauthenticated attacker can list registered users of a SaaS offering.
+
+<br><br>

trainingportal/static/lessons/cvss/cvss_3_score_1.sol.md

@@ -7,6 +7,8 @@ High-level analysis:
 
 ---
 
+CVSS:
+
 - Attack Vector (AV): Network (N)
 - Attack Complexity (AC): Low (L)
 - Attack Requirements (AT): None (N)

trainingportal/static/lessons/cvss/cvss_4_score_2.md

@@ -2,6 +2,10 @@
 
 Score the following scenario using the CVSS v4.0 calculator [https://www.first.org/cvss/calculator/4-0](https://www.first.org/cvss/calculator/4-0).
 
+<br><br>
+
 ### Scenario
 
-A malicious SaaS user with knowledge of another user’s unique 128-bit userid, can read all the information (e.g. details, activity, messages) for that user through an Authorization bypass in the API.
+A malicious SaaS user with knowledge of another user’s unique 128-bit userid, can read all the information (e.g. details, activity, messages) for that user through an Authorization bypass in the API.
+
+<br><br>

trainingportal/static/lessons/cvss/cvss_4_score_2.sol.md

@@ -8,6 +8,8 @@ High-level analysis:
 
 ---
 
+CVSS:
+
 - Attack Vector (AV): Network (N)
 - Attack Complexity (AC): High (H)
 - Attack Requirements (AT): None (N)

trainingportal/static/lessons/cvss/cvss_5_chain.md

@@ -9,20 +9,30 @@ Vulnerability chaining is covered in the [CVSS User Guide](https://www.first.org
 
 Score the following scenario using the CVSS v4.0 calculator [https://www.first.org/cvss/calculator/4-0](https://www.first.org/cvss/calculator/4-0).
 
+<br><br>
+
 ### Scenario
 
 This attack scenario consists of the 2 vulnerabilties we saw earlier. Imagine that an attacker is aware and has the ability to execute both of them as necessary to perform an attack.
 
 You can leverage the CVSS vectors of the previous 2 vulnerabilities that we scored.
 
+<br><br>
+
 #### Vulnerability 1
 
 Unauthenticated attacker can list registered users of a SaaS offering (username and userid).
 
+<br><br>
+
 #### Vulnerability 2
 
 A malicious SaaS user with knowledge of another user’s unique 128-bit userid, can read all the information (e.g. details, activity, messages) for that user through an Authorization bypass in the API.
 
+<br><br>
+
 #### Impact
 
-The attacker is now able to read the information for all users.
+The attacker is now able to read the information for all users.
+
+<br><br>

trainingportal/static/lessons/cvss/cvss_5_chain.sol.md

@@ -8,6 +8,8 @@ High-level analysis:
 
 ---
 
+CVSS:
+
 - Attack Vector: Network (N)
 - Attack Complexity: Low (L)
 - Attack Requirements: None (N)