CVE-2008-3060
V-webmail version 1.5.0 is affected by CVE-2008-3060. The vulnerability arises from (1) malformed input on the login page (includes/local.hooks.php) and (2) an invalid session ID, both of which can cause error messages that reveal the installation path. This indicates a potential information disc...