Luny wrote to tell me about a new XSS worm that’s hitting Adultspace.com (Adultspace.com is to MySpace.com as AdultFriendFinder.com is to Friendster.com - if you remember your SATs). Anyway, it uses a cross between XMLHTTPRequest and the forums themselves to create the attack. It doesn’t use filter evasion. Luny attached a zip file if anyone wants to take a look at the source.
The attack is designed to make you friends with other people so that you can see their naked photos. It affects both the forums and the bulletin boards and because of how it’s written it’s pretty easy to detect.
Thanks for Luny for the tip!