diff --git a/test-14 b/test-14
new file mode 100644
index 0000000000..4a3ed732f1
--- /dev/null
+++ b/test-14
@@ -0,0 +1,7 @@
+document.getElementById('userForm').addEventListener('submit', function(e) {
+  e.preventDefault();
+  
+  // This is an unsafe practice and can lead to XSS vulnerabilities
+  const userInput = document.getElementById('userInput').value;
+  document.getElementById('content').innerHTML = userInput;
+});