ERROR: TaintedData - input.hack:12:18 - Data from a URL query string found its way to an HTML tag using path $_GET --array-fetch--> arrayvalue-fetch (input.hack:2:13) ----> $text (input.hack:2:5) ----> preg_match_all_with_matches#2 (input.hack:7:13) ----> out preg_match_all_with_matches#3 (hhi_embedded_stdlib/builtins_preg.hhi:84:37) --array-fetch--> $matches[1] (input.hack:11:18) --array-fetch--> arrayvalue-fetch (input.hack:11:18) ----> $match (input.hack:11:33) ----> echo#1 (input.hack:12:18)