I offer security consulting services within the space of Penetration Testing , Ethical Hacking , Vulnerability Assessments and Security Code and Configuration Reviews

Google Bug Hunting

Today, i am sharing my Google findings that gives me a great experience.

Xss in html5rocks.com Google acquired Site.

PoC: http://www.html5rocks.com/en/tutorials/#

Bug in http://rightsflow.com/

I gives a Username and Password, Username field is all correct but in Password field, Password was showing and not marked as Password type.

Password field was defaults set as Text type.