I also broke into the systems in college, but I was so anxious/scared about the whole ordeal I didn't dare to disclose the vulnerabilities I found.

I figured it could go both ways: either my career as IT student was over, or they would thank/praise me for it. I figured it wasn't worth the risk.