Armaan Sidana

**Name of the Vulnerable Software and Affected Versions** Unifiedtransform versions 2.X **Description** The issue allows students to modify exam rules due to incorrect access control. The affected endpoint is "/exams/edit-rule?exam rule id=1". **Recommendations** For Unifiedtransform version 2.X, restrict access to the "/exams/edit-rule" endpoint to prevent unauthorized modification of exam rules. Consider implementing proper access controls to ensure that only authorized users can modify exam rules.

**Name of the Vulnerable Software and Affected Versions** Unifiedtransform versions 2.X **Description** The issue allows teachers to change the Section Name and Room Number, which are permissions that should be restricted to administrators, due to Incorrect Access Control. **Recommendations** For Unifiedtransform version 2.X, restrict access to the section and room configuration features to administrator roles only, until a proper fix is implemented.