AJAX, implemented improperly, is a major source of current web app
vulnerabilities. I've even found some in the sites I use every week
for business with vendors.
http://searchsoftwarequality.techtarget.com/originalContent/
0,289142,sid92_gci1270910,00.html