Hello dear xss'er. Your xss should be in 'sudo.co.il' context.
This untrusted content loaded from untrusted.sudo.co.il