[{"label":"XSS","type":"script or html injection","pattern":"<[^>]*(script|object|iframe|applet|meta|style|form|img|onmouseover|body)*\"?[^>]*>"},{"label":"RFI","type":"remote file inclusion","pattern":"^(http|https|ftp|webdav)[\\s]*:[\\s]*\\\/[\\s]*\\\/[\\s]*.*\\\/.*\\?"},{"label":"LFI","type":"local file inclusion","pattern":"\\.+\\\/+"},{"label":"SQL","type":"sql injection","pattern":"(;)?[\\s]*insert.+into.+value.+"},{"label":"SQL","type":"sql injection","pattern":"(;)?[\\s]*(drop,alter,create).+(index,table,database)"},{"label":"SQL","type":"sql injection","pattern":"update.+set.*="},{"label":"SQL","type":"sql injection","pattern":"union.+(all)?.*select"}]