ATutor versions 1.5.3.2 and prior suffer from multiple remote file inclusion vulnerabilities.
ed984c20951420e9281229b3a644128ad91776098b7b2a7dde32e2c71aa5afd5
phpBB plus versions 1.53 and below allow for system information to be leaked via phpinfo.
14da6f698848e5bc8b0b2c1fa87d70c7c80e6c007ffd431bf2e34b2ffc8b6327