Hinton Design PHPHT Multiple Input Validation Vulnerabilities

Hinton Design PHPHT Multiple Input Validation Vulnerabilities

The 'phpht' application is prone to multiple input-validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input.

Successful exploitation could allow an attacker to compromise the application, access or modify data, steal cookie-based authentication credentials, or possibly control how the site is rendered to the user.

Attackers may be also able to exploit vulnerabilities in the underlying database implementation and conduct other attacks.

Some of these issues may be related to those discussed in BID 16541 (Hinton Design PHPHG Guestbook Multiple Input Validation Vulnerabilities) and BID 16528 (Hinton Design PHPStatus Username SQL Injection Vulnerability).