cpe:/a:mail_machine:mailmachine_pro:2.2.5 CVE-2007-6551 2007-12-27T19:46:00.000-05:00 2017-09-28T21:29:59.253-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2007-12-28T10:18:00.000-05:00 ALLOWS_USER_ACCESS VIM 20080108 Vendor ACK for CVE-2007-6551 (MailMachine Pro SQL injection) BID 27030 SECUNIA 28232 OSVDB 39638 EXPLOIT-DB 4788 MISC http://www.inj3ct-it.org/exploit/MailMachine%20Pro%202.2.4.txt XF mailmachinepro-showMsg-sql-injection(39211) SQL injection vulnerability in showMsg.php in MailMachine Pro 2.2.4, and other versions before 2.2.6, allows remote attackers to execute arbitrary SQL commands via the id parameter.