Playing around with DOM XSS (Demo included)

Paper: Automated detection of CSRF-worthy HTML forms through 4-pass reverse-Diff analysis