ISearch 2.16 - 'ISEARCH_PATH' Remote File Inclusion

source: https://www.securityfocus.com/bid/20401/info iSearch is affected by a remote file-include vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary server-side script code on an affected computer with the...

CVE-2004-2341

PHP file include injection vulnerability in isearch.inc.php for iSearch allows remote attackers to execute arbitrary code via the isearchpath parameter...