Imagine a company spending lots of time and money protecting their website from cross-site scripting attacks and other forms of code injection, to then place adverts on their site.