Magento: protect you from XSS

Few time ago, NBS System, a french Magento hosting, has published a reporting about some XSS issues available on Magento

My curiousity led me to check some references on Magento, and It’s a shame, but there are many which are vulnerable.

  • Is it a lack of sensibility to this issue in web agencies ?
  • A maintenance too weak or not proactive enough ?

Some of these websites are online for many years. It’s a shame that web application security was not considered better.