Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6226


Vulnerability Score 6.8 6.8
CVE Id CVE-2008-6226
Last Modified 07 Mar 2011 10:15:56
Published 20 Feb 2009 06:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE



SQL injection vulnerability in moreinfo.php in Pre Projects PHP Auto Listings Script, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the itemno parameter.

Vulnerable Systems


  • Preproject Php Auto Listings Script Nil


XF - phpautolistings-moreinfo-sql-injection(46381)

VUPEN - ADV-2008-3022

BID - 32131

MILW0RM - 7003

SECUNIA - 32547

Last Updated: 27 May 2016 10:49:06