After reading the Security Notice pls scroll up
Hello,
We are following up on our previous email regarding a critical security vulnerability in your system.
During our assessment, we identified a Remote Code Execution (RCE) issue that could allow execution of system-level commands through the web application, as well as an SQL Injection vulnerability in the admin panel. Based on limited and responsible verification, this may impact approximately 2,542 student records along with related infrastructure.
We would like to reiterate that no data was modified, deleted, or accessed beyond what was necessary to confirm the vulnerability.
Kindly review the Proof of Concept (PoC) shared earlier. We recommend addressing these issues at the earliest to prevent potential misuse.
Please let us know if any additional information or clarification is required.
Regards,
Team NOCTIS (N0C715)
Please scroll up ↑
