lang:

JSP

regex:

\<\%=\s*request\.(getParameter|getQueryString)\s*\(

description:

Cross Site Scripting via request.getParameter() in JSP
tags:
xss
results