One-day-old e-medhabruti vulnerable to hacking
By Express News Service | Published: 03rd March 2013 10:35 AM |
A day after the Department of Higher Education (DHE) launched the e-medhabruti software for online application of scholarships, students have alleged that the software is susceptible to hacking.
Aiming for smooth conduct of e-scholarship scheme, DHE had launched e-medhabruti and linked it to DHE website for eligible students to apply.
Last year, scholarship scheme was made online to accommodate large number of students, both from general and technical colleges. However, due to certain loopholes in the software, an improved version of it - e-medhabruti - was developed by a private agency that was given over `6 lakh for developing and maintaining the e-medhabruti software for a period of three months.
"One does not need to be a hacker to gain access to the admin console of e-medhabruti link of DHE. As the server directory listing is enabled on the website, anyone logging in can access secret links or files," said Javed Anwar, a student of Utkal University, who was instrumental in developing the e-admission software for varsity's PG programmes.
Through the admin console, any person can manipulate forms or delete necessary categories like ST/SC and OBC and other information. "Although all such information should be password protected, the website developer has not done so," Javed said.
DHE sources said loopholes have been pointed out to the agency concerned and will be rectified soon.