PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.
WordPress ME for XOOPS: crossite scripting.
vulners.com/securityvulns/securityvulns:doc:20300
vulners.com/securityvulns/securityvulns:doc:20301
vulners.com/securityvulns/securityvulns:doc:20302
vulners.com/securityvulns/securityvulns:doc:20303
vulners.com/securityvulns/securityvulns:doc:20305
vulners.com/securityvulns/securityvulns:doc:20306
vulners.com/securityvulns/securityvulns:doc:20307