El Reg (http://www.theregister.co.uk/2007/05/17/fortify_java_security/) is carrying a report stating that "The growing use of JavaScript in web browsers is the new security weak spot, says Brian Chess, chief scientist and founder of US security software specialist Fortify Software.
Specifically, the use of Ajax techniques to build Web 2.0 applications makes enterprise applications more vulnerable."
JavaScript - the new ActiveX? :(