U.S. Dept Of Defense disclosed a bug submitted by g4mb4: https://hackerone.com/reports/1624374 [Source]