The betanews.com link doesn't work, here is a link that explains how mySpace was hacked by the hacker himself!
http://namb.la/popular/ Andrew. >As a general rule, yes. Providing HTML editing in any publicly accessible >part of a web app is one of those "bad things" you typically want to avoid. >Here's just one example of why: > >http://www.betanews.com/article/CrossSite_Scripting_Worm_Hits_MySpace/112923 >2391 > >--- >Kevin Graeme >Cooperative Extension Technology Services >University of Wisconsin-Extension > > >> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Message: http://www.houseoffusion.com/lists.cfm/link=i:4:233269 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54