diff --git a/internal/waf/injectionutils/utils_xss_test.go b/internal/waf/injectionutils/utils_xss_test.go
index 91ef826..53e32b6 100644
--- a/internal/waf/injectionutils/utils_xss_test.go
+++ b/internal/waf/injectionutils/utils_xss_test.go
@@ -44,6 +44,8 @@ func TestDetectXSS_Strict(t *testing.T) {
 	a.IsFalse(injectionutils.DetectXSS(`<a href="aaaa"></a>`, true))
 	a.IsFalse(injectionutils.DetectXSS(`<span style="color: red"></span>`, false))
 	a.IsTrue(injectionutils.DetectXSS(`<span style="color: red"></span>`, true))
+	a.IsFalse(injectionutils.DetectXSS("https://example.com?style=list", false))
+	a.IsTrue(injectionutils.DetectXSS("https://example.com?style=list", true))
 }
 
 func BenchmarkDetectXSS_MISS(b *testing.B) {