PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Claroline: crossite scripting.
vulners.com/securityvulns/securityvulns:doc:19488
vulners.com/securityvulns/securityvulns:doc:19489
vulners.com/securityvulns/securityvulns:doc:19490
vulners.com/securityvulns/securityvulns:doc:19491
vulners.com/securityvulns/securityvulns:doc:19492
vulners.com/securityvulns/securityvulns:doc:19493