The Interviewer itself doesn't have any idea of basic OWASP findings. Very egoistic person. the background he was a developer and then switch to security .. I must say the company should make such criteria where people don't have an ego at least in the interview .. More about him: he's not even allowing the panel to ask any questions ...