lang:

ColdFusion

regex:

( =\s.*|\<input ).*value=\s?(\"|\')\#(url|form)\.

description:

User controlled input direct to output, possible cross-site scripting.
tags:
xss cross-site scripting cwe-79
results