YAAP versions 1.5 and below suffer from a remote file inclusion vulnerability.
fe715a0b43553add2f8a3a422b142e04d57883e4d14a1c5e48ddcc424d6ac7ab
BBClone version 0.31 suffers from a remote file inclusion vulnerability in selectlang.php.
e7adc8dfccb70309e1f6bfc9f2a2afead0b714d3314269447ae6dba45d0442b6
phpXD versions 0.3 and below remote file inclusion exploit.
a458745ac671c26d9c651cb1bd37fcbf6d430224b0bdad3671c24d4cac1d8cff
Tucows Client Code Suite versions 1.2.1015 and below remote file inclusion exploit.
8c7d5b4d9a9dfc82ac79fb8f2fedab577e49661b957d2b6322b0aec2f4fdb955