A Department of Defense website was misconfigured in a manner that could have exposed sensitive information. Thank you @sp1d3rs for notifying us of this! I discovered a publicy accessible internal statistics module in the Army system. The module was outdated and unused, however, it disclosed some sensitive information (for example, collected IP addresses of the site visitors for the big range of time). The problem was fixed by removing this module.