diff --git a/src/Psalm/Internal/Analyzer/Statements/Expression/Fetch/VariableFetchAnalyzer.php b/src/Psalm/Internal/Analyzer/Statements/Expression/Fetch/VariableFetchAnalyzer.php
index 479c03368c5..52088742823 100644
--- a/src/Psalm/Internal/Analyzer/Statements/Expression/Fetch/VariableFetchAnalyzer.php
+++ b/src/Psalm/Internal/Analyzer/Statements/Expression/Fetch/VariableFetchAnalyzer.php
@@ -361,7 +361,11 @@ private static function taintVariable(
         $codebase = $statements_analyzer->getCodebase();
 
         if ($codebase->taint && $codebase->config->trackTaintsInPath($statements_analyzer->getFilePath())) {
-            if ($var_name === '$_GET' || $var_name === '$_POST' || $var_name === '$_COOKIE') {
+            if ($var_name === '$_GET'
+                || $var_name === '$_POST'
+                || $var_name === '$_COOKIE'
+                || $var_name === '$_REQUEST'
+            ) {
                 $taint_location = new CodeLocation($statements_analyzer->getSource(), $stmt);
 
                 $server_taint_source = new Source(