This report identified three vulnerabilities with VPN services leaking sensitive IP Address and location information. Virtual Private Networks are used for several different reasons, but in this case it is used to connect privately to an internal network. The VPN service will encrypt your data and hide your true IP address for security reasons.
Vulnerabilities were found at PureVPN, HotSpot Shield, and Zenmate.
It was also noted that these vulnerabilities were with the Chrome plug-in. Not the desktop or smartphone version. The other vulnerabilities were not disclosed because no patch has been created.