This is just the stuff I briefly look at in my spare time for one reason or the other, don't expect anything fancy.

2014007: Missing CSRF Protection in SEO Panel 3.4.0
2014006: Path Traversal Issue in SEO Panel 3.4.0
2014005: SQL Injections in SEO Panel 3.4.0
2014011: Plaintext passwords in Freehelpdesk 2.4
2014010: Multiple SQL injections in Freehelpdesk 2.4
2014009: Multiple stored XSS in Freehelpdesk 2.4
2014003: Multiple issues in Web Video Streamer
2014002: Hash complexity DoS in Jansson library
2014001: XSS in Webtrees 1.5.1
2013005: XSS in Froxlor 0.9.30 and earlier
2013004: XSS in Novius OS 2.3
2013002: XSS in ganglia-web 3.5.10 and earlier
2013001: XSS in ldap-account-manager 4.3 and earlier