U.S. Dept Of Defense: Information disclosure vulnerability on a DoD website

ID H1:210525
Type hackerone
Reporter twicedi
Modified 2017-07-05T20:36:21


A Department of Defense website was mis-configured in a manner that could have exposed sensitive information about the web application or system. @twicedi was able to demonstrate this vulnerability by crafting specially formatted URLs. Thank you for notifying us!