Reflective XSS vulnerability on a DoD website

A cross-site scripting vulnerability was found on a Department of Defense website which may trick a web user into executing a malicious script, potentially revealing a user's web session information or modify web content. Multiple researchers were able to demonstrate this vulnerability by crafting a specially formatted URL. Thanks @fantam and @rashedhasan007!