I noticed vandals had taken advantage of a WordPress back door to put up some unneeded links to my site but I didn’t trust myself enough to notice this script:
IF YOU’VE VISITED MY SITE IN THE PAST MONTH AND YOU ARE ON IE ON WINDOWS YOU MAY HAVE BEEN INFECTED. CHECK THESE SITES FOR SPYWARE SOFTWAREMcAfee and Symantec make good products.
Also This was all made possible due to a loophole in security presented by WordPress. If you close your browser or window or anything without hitting “Logout (Aministrator)” it remains logged in as Administrator no matter who accesses the “wp-admin” utility.