Cross-site scripting (XSS) vulnerability in QuickBlogger 1.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) author ("your name") and (2) "comment" section.
https://exchange.xforce.ibmcloud.com/vulnerabilities/21244
http://www.vupen.com/english/advisories/2005/0987
http://www.securityfocus.com/bid/14152
http://securitytracker.com/id?1014386
http://secunia.com/advisories/15942
http://exploitlabs.com/files/advisories/EXPL-A-2005-011-quickblogger.txt