PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
vulners.com/securityvulns/securityvulns:doc:28856
vulners.com/securityvulns/securityvulns:doc:28857
vulners.com/securityvulns/securityvulns:doc:28858