on a static content - how is it possible to launch an attack?
if i got html page and jQuery that manipulate the dom - getting the data from txt file or from webService...
and no user input are involve...
so for my understanding is the only attack that could happen only locally: on the attacker browser himself:
and will not effect globally for other users -- wright?