Cross-Site Scripting XSS (store javascript data without validation)