Narendra bhati, from sheoganj,rajasthan , a security researcher and Penetration Tester at cyber octet ahmedabad, has discovered cross-site scripting vulnerability in google.
Google support page is found to be affected by the Non-persistent XSS vulnerability. The researcher sent notification to Google and got response from the Google.
Google after receiving the report immediately patched the vulnerability and promised to give 500$ reward for his finding.
According to narendra, when he was searching on google, he noticed that something wrong with that url. So he started to his hacker-mind and found the URL is affected by the XSS.
Recently, Narendra has discovered a click jacking in adobe & rediffmail,ebay and also acknowledged by adobe.