Stichwort: cross site scripting