By using Expect: header it's possible to inject HTML code to another site's context.
vulners.com/securityvulns/securityvulns:doc:13627
vulners.com/securityvulns/securityvulns:doc:13628