You’ve most likely heard of XSS (Cross Site Scripting) and you might even know how it works. But have you given any deeper thoughts to how many ways your XSS vulnerabilities can be abused? From the top of my head, here’s 8 ways to abuse websites where html / javascript injection is possible.

I just went to www.shoemoney.com to check if Jeremy had wrote anything interesting. And guess what.. It appears that shoemoney’s blog got hacked by a turkish hacker called iSKORPiTX who defaced it with something about france. See the screenshot in post.