Google bug-hunting game helps developers find XSS security flaws

Security researchers and businesses can use a new Google game to find a much-abused vulnerability considered one of the world's top three web security threats.

This security game consists of several levels resembling real-world applications which are vulnerable to XSS - your task will be to find the problem and attack the apps, similar to what an evil hacker might do.

XSS bugs are common because they have a nasty habit of popping up wherever a webapp deals with untrusted input. Our motivation is to highlight common coding patterns which lead to XSS to help you spot them in your code.

Link to game: https://xss-game.appspot.com/