/vuln?param=your input