A security researcher that goes by the Twitter name @WilyXem, a pen-tester from Spain. Earlier we posted a false claim, which was just a SQL error, not necessarily a SQL injection vulnerability.
@WilyXem notified us and then found a real vulnerability within one of Harvard’s sub domain.
You can view the Tweet announcing the exploit below:
— WilyXem (@WilyXem) January 30, 2013