Pearson - the world's leading learning company #PearsonProud Show more Show less
NIIT Ltd. is a leading skills & talent development corporation, set up in 1981 to help the nascent IT industry overcome its human resource challenges. To meet the manpower challenges in BFSI sector, NIIT established Institute for Finance, Banking, and Insurance (IFBI), India's premier banking training institute in 2006. The company today ranks amongst the world's leading training organizations owing to its vast and comprehensive array of talent development programs. NIIT Ltd. delivers a diverse range of learning and talent development programs to millions of individual and corporate learners in futuristic domains through its various businesses including NIIT Digital, StackRoute, RPS Consulting, Institute of Finance Banking & Insurance (IFBI), TPaaS and Sales & Service Excellence (SSE). • The robust NIIT Digital platform enables distinctive learning experiences for corporate and individual learners. • IFBI is a leading provider of learning services for early career as well as working professionals for the BFSI sector in India. • NIIT StackRoute is a digital transformation partner for corporates to build multi-skilled full stack professionals in advanced technologies at scale. • RPS Consulting is a leading provider of training programs on emerging digital technologies for experienced technology professionals. • Talent Pipeline as a Service (TPaaS) helps organizations address the challenge of securing mid to long term talent across Technology, Marketing, and Sales Roles. • NIIT SSE has deep expertise in empowering businesses in creating an eco- system for talent development to enhance key competencies & elevate performance to achieve higher business outcomes.
Security & Compliance Standards Overview
No incidents recorded for Pearson Higher Education in 2025.
No incidents recorded for NIIT Limited in 2025.
Pearson Higher Education cyber incidents detection timeline including parent company and subsidiaries
NIIT Limited cyber incidents detection timeline including parent company and subsidiaries
Last 3 Security & Risk Events by Company
A vulnerability has been found in TykoDev cherry-studio-TykoFork 0.1. This issue affects the function redirectToAuthorization of the file /.well-known/oauth-authorization-server of the component OAuth Server Discovery. Such manipulation of the argument authorizationUrl leads to os command injection. The attack can be executed remotely. The exploit has been disclosed to the public and may be used.
A flaw has been found in code-projects Question Paper Generator up to 1.0. This vulnerability affects unknown code of the file /selectquestionuser.php. This manipulation of the argument subid causes sql injection. Remote exploitation of the attack is possible. The exploit has been published and may be used.
A vulnerability was found in alokjaiswal Hotel-Management-services-using-MYSQL-and-php up to 5f8b60a7aa6c06a5632de569d4e3f6a8cd82f76f. Affected by this vulnerability is an unknown functionality of the file /dishsub.php. The manipulation of the argument item.name results in cross site scripting. It is possible to launch the attack remotely. The exploit has been made public and could be used. This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available. The vendor was contacted early about this disclosure but did not respond in any way.
A vulnerability has been found in alokjaiswal Hotel-Management-services-using-MYSQL-and-php up to 5f8b60a7aa6c06a5632de569d4e3f6a8cd82f76f. Affected is an unknown function of the file /usersub.php of the component Request Pending Page. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available. The vendor was contacted early about this disclosure but did not respond in any way.
A flaw has been found in Verysync 微力同步 up to 2.21.3. This impacts an unknown function of the file /rest/f/api/resources/f96956469e7be39d/tmp/text.txt?override=false of the component Web Administration Module. Executing manipulation can lead to unrestricted upload. The attack may be performed from remote. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
