Can this be exploited as XSS vulnerability using urls like localhost/?myVar= or though any other possibility?
localhost/?myVar=
