This page collects reflected XSS from an array of sources and to various sinks which are escaped on the server before being passed to a sink.
This class of XSS simply takes a value from the parameter and echoes it back in an HTML page in a specific HTML context with some escaping
<%q>
    <%q>
    <foo src=%q>
    <foo src=%q>
    <foo src='%q'>
    <foo src='%q'>
    <foo src="%q">
    <foo src="%q">
    <foo %q=irrelevant>
    <foo %q=irrelevant>
    XSS that can occur inside a STYLE block or inside a style="" attribute.
XSS that can occur inside a SCRIPT block.
XSS that can occur due to unsanitized URLs in various contexts.
XSS that can occur inside an eval inside a SCRIPT block.