I would have to think of something like this:
Let's say you would have a text box, to type something, such as username:
User Name : <input ... value="Nome">
Now, if you type like this: "onmouseover=" event
<input ... value=" "onmouseover="evento ">
Or something like this:
We have a text box, type a browser, if we type such thing, it may appear "No results were found for [searched word]"
And if we type: Code, and the browser or other site does not find anything, if it does not have any security, can execute the script.
Let's say this is HTML:
<div>Não foi encntrado nenhum resultado para <script>alert("script")</script></div>
Example 2:
<script type="text/javascript">
function Pesquise(){
/*Script do navegador ou parte de pesquisa de um site*/
document.getElementById("Result").innerHTML = "Não foi encontrado nenhum resultado para " + document.getElementById("CaixaPesquisa").value;
}
</script>
<input id="CaixaPesquisa" type="text" value="Código aqui"/><input type="submit" value="Pesquisar" onclick="Pesquise();"/>
<div id="Result">
</div>