The Joomla Simple File Upload component version 1.3 suffers from a remote code execution vulnerability.
805ef7cfd9b8a1d4ba413bccf67b38b7c55142606663af6ab35e092bc08e9e50
Flatnuke 3 cookies grabbing exploit that uses html/javascript injection.
6592ef5a895210e3b390d0b0dcec3f061aa687222f13970a8e720641cb689da6
PicoFlat CMS version 0.5.9 suffers from a local file inclusion vulnerability in index.php. This uses the same variable that had a remote file inclusion vulnerability back in October of 2007.
2c10e7ccf5e8093e189b8ea95b4a6be0c6d6ebaf61737cd4024a8481c1a945ff