lang:

ASP

regex:

Response.Write\([^\)]*?(\+*|\&*)\s*Request.Params.Get\(.*\)(\+*|\&*)\s*

description:

User controlled input direct to output, possible cross-site scripting.
tags:
xss cross-site scripting cwe-79
results