Looking for a way to make some extra cash? Mozilla has expanded their bounty program for finding flaws in Mozilla-based products (like Firefox and Thunderbird) to their websites and web applications too. You can earn anywhere between $500 to $3,000 for bugs you find that are high severity or critical vulnerabilities.
So, which domains can you look for bugs on?
Here is a little more information from Mozilla about the inclusion of web apps as a part of the bug bounty program.
Many people are not aware that we have paid the bounty in the past on web application security vulnerabilities which impact client security. We are, however, expanding the bounty beyond web vulnerabilities which just affect the client. We also feel we should have a more formal structure around our web properties when it comes to paying a bounty because our goal is to make our products and services more secure.
Happy hunting! From more information on the bug bounty program, be sure to check out the FAQ posted over at Mozilla.org. It has tons of useful information.