To simplify the example, the following code
On the page is a form:
Which betrays the file getpage.php in the frame:
The file itself getpage.php gives the body of the page:
<?$url = $_POST['url'];$page = file_get_html($url);echo $page;?>
If the remote page contains XSS code, then will it to my site and if so, how to get rid of it?