Attacking The Attackers.

Stefan Esser from hardened-php talks about a flaw in one of gnucitizen's programs online that facilitated XSS. Now I got one for Stefan himself, and this is likely more problematic. Because, what would you say, when you are top PHP security expert and are vulnerable to such basic exploit like this below? shit happens, and the fact is most website are vulnerable. To be 99,99% secure requires a vigilant mind and constant auditing, because these things can be prevented:http://forum.hardened-php.net/viewforum.php/%22%3E%3CBODY%20ONLOAD=alert('XSS')%3EUPDATE: I turned of comments because I am fucking tired of these rants going on lately. No I am not hacked or whatever, I am just not here to listen to this bullshit all day, the rate of contributing to this magazine in comments and rants has risen to 99-1 which made me shut this down, if you do not like it go away. It may sound very cruel, but remember: I am not an entertainer.