U.S. Dept Of Defense: Information disclosure vulnerability on a DoD website

2016-12-08T10:27:13
ID H1:189458
Type hackerone
Reporter babayaga_
Modified 2017-06-01T15:06:50

Description

A misconfigured Department of Defense webserver improperly disclosed application information.@babayaga_ was able to demonstrate this vulnerability by crafting specially formatted URLs.