Hacker News new | ask | show | jobs
by flir 433 days ago
Cross-Site Scripting. If a user injects a malicious script into the page, it doesn't get run.