LightBlog provides "webmasters who don't have SQL databases with a fully featured blogging system. Using text files to store data, there's no need for complicated installation procedures or a potentially pricey hosting bill". A vulnerability in the way LightBlog handles uploaded images, allows remote attackers to upload a PHP file instead which then can be executed and in turn compromise the operating system where the LighBlog is installed.

http://www.securiteam.com/unixfocus/5TP030UNFO.html