From 13f8a88c3f0be190529eb959747d4669ee2e6daf Mon Sep 17 00:00:00 2001
From: Ana Scolari <127357173+apsscolari@users.noreply.github.com>
Date: Thu, 5 Jun 2025 15:25:35 -0700
Subject: [PATCH] Update script.test.js

---
 src/script.test.js | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/src/script.test.js b/src/script.test.js
index da30e5f..b470ef1 100644
--- a/src/script.test.js
+++ b/src/script.test.js
@@ -1 +1,9 @@
 alert('test script to be excluded')
+const http = require('http');
+const url = require('url');
+
+http.createServer(function (req, res) {
+    const query = url.parse(req.url, true).query;
+    // Vulnerable to reflected XSS
+    res.end('<h1>Hello, ' + query.name + '!</h1>');
+}).listen(8080);