Skip to content

Duke recognizes responsible disclosure

Researchers sometimes discover security vulnerabilities with university systems and networks, and Duke recognizes the value of identifying and remediating these issues, in accordance with the university’s responsible disclosure policy (found here: Responsible Disclosure Policy and Guidance.

We'd like to recognize Faizan Ahmad for his efforts in uncovering an cross-site scripting (XSS) issue with a Duke University website, alerting the IT Security Office of the issue and working with Duke IT security staff to remediate it. Efforts such as these ensure a more secure environment for all our users.

Faizan Ahmad is a security researcher, and can be reached at the following:

Email: Facebook ID Link:

To report a security issue, please contact us at