Please explain your answer:
Any additional note for the reviewer:
NOTE: This test case actually takes the Referer value as the source of input since normal headers are not considered a valid source for XSS attacks. To change the input to this test case, update the URL above, reload the page, and then submit a request.