Directory traversal, passwords decryption, format string bugs, crossite scripting, etc.
vulners.com/securityvulns/securityvulns:doc:4725