PHP remote file inclusion vulnerability in acc.php in QuickBlogger (QB) 1.4 allows remote attackers to execute arbitrary PHP code via a URL in the page parameter.
https://exchange.xforce.ibmcloud.com/vulnerabilities/29173
http://www.securityfocus.com/archive/1/447003/100/0/threaded