Clients, especially those on the Internet, are, like servers, at risk in Web applications. It is possible for Web browsers to unknowingly download content and programs that could open up the client system to crackers and automated agents all over the Net. Malicious programs could collect and send sensitive and private information from the client machine to Net programs and servers that collect such information.
As a general rule, pure HTML 3.2, without client-side scripting, is rather secure. A Web page designer can do little to extract or to breach a client's security. Client-side risk usually involves the use of the following technologies:
Except for cookies, ...