A fun­da­mental rule of devel­op­ing web applic­a­tions is “Never trust data from the out­side world.“
If you don’t <a href=“http://freedom.ntl.com/sc_default.asp?num=BT” onclick=“javascript:_gaq.push([’_trackEvent’,‘outbound-article’,‘http://freedom.ntl.com’]);“s%20Help%20Line” title=“NTL blooper”>this can happen. Read it care­fully.
In case they take it down or fix it I’ve taken a snap­shot

Thanks to Don­ncha for the link.