U.S. Dept Of Defense: Subdomain Takeover via Host Header Injection on www.█████
The vulnerability was a subdomain takeover due to a CNAME record pointing to an unclaimed domain. This allowed malicious individuals to potentially take control of the affected subdomain and use it for malicious purposes...