Someone should post some [email protected]*~ to some [email protected]*~' social [email protected]*~ to attract some [email protected]*~ people
Ok, fill in the blanks...
AJAX was a great and successful shot. I mean we all know and was doing similar things like AJAX. Didn't you know "remote scripting" from Microsoft? Shame on you. Someone (no offense - in fact I totally support and respect to these and similiar actions) put it public in a well documented way, tested method and with some great samples.
I just read slashdot headers, XSS Vulnerabilities Reviewed and Re-Classified (hmm? don't expect too much it's just a reminder)
Thanks to neosmart to point it again. People starting to understand impact of XSS attacks after "Samy is my hero (was really fun)" or recent "Yahoo worm attack". I'm always saying this, "XSS is not important because of its impact, It's important because you can find it virtually anywhere!"
Sometimes even in a 3rd party client application like Flash player.