Cross-site scripting attacks... Exploit the trust a user has for a particular site. Generally involve Web sites that display foreign data. Inject content of attacker's choosing.