iSearch has been reported to contain a flaw that may allow a remote attacker to execute arbitrary commands. The issue is supposedly due to the index.php, viewcache.php, sitemap.php, isearch.inc.php, google_sitemap.php, stats.php and auto_spider_img.php not properly sanitizing user input supplied to the 'isearch_path' variable. However, subsequent examination indicates and attacker can not manipulate input to the variable before being processed by the script.
Remote / Network Access
Loss of Integrity
Myth / Fake
The vulnerability reported is incorrect. No solution required.