Testing Forms – Escaping and Sanitizing

Throw this in any form field and keep an eye on the console

<script>console.log('foo');</script>