SQL Injection and Cross-site Scripting at the website of the University of Calgary

I have reported several critical vulnerabilities, such as SQL Injection and Cross-site Scripting, to the IT support center of the University of Calgary. The university has fixed the issues successfully.