It doesn't quite belong here ... but CERT has published a short overview of Cross Site Scripting and what you can do to avoid it: CERT CSS overview Cheers, BrainStop
"To estimate the time it takes to do a task, estimate the time you think it should take, multiply by two, and change the unit of measure to the next highest unit. Thus we allocate two days for a one-hour task." -- Westheimer's Rule
Forum Rules