Is there any web language that allows the client itself to create HTTP posts to external sites.

I know that JavaScript does this with XMLHttpRequest, but it does not allow cross-domain posting, unless the recipient domain wants to allow the sending domain.

I want to post data to an external site (that I don’t control) and have the request be authenticated with what the client’s browser already has (cookies, etc).

Is this possible? I tried cURL but it seems to make a server HTTP post, not a client HTTP post.

Edit:

A bit more insight of what I am trying to do:

I am trying to POST JSON to the website using the user’s session (I said cookies but I believe they are PHP sessions, which I guess I still consider cookies).

The website does NOT check the referral (poor security #1)
I can execute javascript and html on the webpage using my personal homepage (poor security #2)
The JSON code will still work even if the content-type is form (poor security #3)
There is no security checking at all, just PHP session checking.

The form idea is wonderful and it works. The probably again is that its JSON. So having sent postdata as foo={“test”:”123″, “test2″:”456”} the whole foo= part messes it up. Plus forms seem to turn JSON into form encoding, so its sending:

foo=%7B%22
test%22%3A+%22
123%22%2C+%22
test2%22%3A+%22
456%22%7D

when i need it to send;

{“test”:”123″, “test2″:”456”}

So with everything known, is there a better chance of sending JSON or not?