{"detect":{"cwe":"CWE-79","exploit_examples":["/reflected/?q=%3Cscript%3Ealert(1)%3C%2Fscript%3E","/reflected/?q=%3Cimg%20src=x%20onerror=alert(1)%3E"],"owasp":"A03:2021 \u2014 Injection (XSS)","scanner_should_fire":true,"sinks":["jinja Markup(user_input)","{{ user_input | safe }}"],"subtype":"reflected-html-context","success_markers":["alert(1)"],"tags":["reflected","html-context","no-escape"]},"lab_url":"/reflected/","sink":"Markup() / |safe","slug":"reflected","source_url":"/source/reflected","summary":"Search box echoes your query into the page without escaping.","title":"Reflected XSS","vulnerable":true}