experimental/Security/CWE/CWE-094/ScriptInjection.ql