Y
Hacker News
new
|
ask
|
show
|
jobs
by
UncleMeat
2759 days ago
You are already one xss attack away from having your session stolen or having your credentials stolen or any number of other bad things. Passwords on the client are fine.
1 comments
anoncake
2759 days ago
Unless the user uses the same password for other things, which is extremely common.
link