http://www.boston.com/business/technology/articles/2008/04/23/hack_into_obama_campaign_site_exploited_a_coding_flaw/Some supporters who tried to visit the community blogs section of Obama's site started noticing late last week they were being redirected to Sen. Hillary Rodham Clinton's official campaign site.
Security researchers said a hacker exploited a so-called "cross-site scripting" vulnerability in Obama's Web site to engineer the ruse.
Netcraft Ltd. said the hacker injected code into certain pages in the section -- code that was then executed when subsequent visitors tried to view the community blogs section. The vulnerability has since been fixed.
(snip)
"With people closely watching the heated contest to determine the next U.S. president, you can bet that this won't be the last time such attacks happen," Symantec Corp. researcher Zulfikar Ramzan wrote on the company's official blog.