This article from MSDN explains cross site scripting with very good and simple examples. We all have heard of cross site scripting in the last couple of years and most of the times it was in context of some vulnerability with IE (different versions). Threats from Cross Site Scripting (or XSS) includes account hijacking, changing of user settings, cookie theft/poisoning etc. If you don't take care, this could be easiest forms of hacking. Here's the URL once again:
When Output Turns Bad: Cross Site Scripting Explained