Using a variant of well-known cross site scripting attacks, British Web developer and security researcher Sam Greenhalgh was able to inject JavaScript from his own website into pages generated by NatWest, Mastercard and Barclays. Even the website of GCHQ, Britain's electronic eavesdropping operation, can be overlaid with bogus content, Greenhalgh shows.
Ukázka.
O n?co lepší vysv?tlení je
zde, pracuje s Internet Explorer na Windows XP, Service Pack 2 (Release Candidate 2) a na Mozilla Firefox 0.9.1.