WebCalendar 1.0.3 suffers from a flaw that lets an attacker read any file if register_globals = On.
62e3e0831ed6ddc4696efb139610fc87f1a4ff5f48d7c8559e10ee747a604d50
e107 CMS versions 0.7.2 and below suffer from a SQL injection vulnerability during cookie processing.
8617e73ab061bd89bab2169af72c7e7eb60ddb9639bee6f4faabd4c73f32e1fe