I had my WordPress blog hack and I was looking for some answers on how to avoid it in the future. The website that I found very useful was called milw0rm and you will find it on Google. They list many WordPress plug in that have a security hole where hackers can take over your blog.

From 2008 you can see these plugin among many others. If you have not updated you plugin or WordPress for a long time then there is over 50 different security problems with WordPress.

If you thinking of install any WordPress plugin make sure the plugin are secure and not on any hackers list.

2008-03-31 WordPress Plugin Download
2008-02-26 WordPress Plugin Sniplets 1.1.2
2008-02-16 WordPress Photo album
2008-02-15 WordPress Plugin Simple Forum 1.10-1.11
2008-02-15 WordPress Plugin Simple Forum 2.0-2.1
2008-02-05 WordPress MU < 1.3.2 active_plugins 2008-02-03 WordPress Plugin st_newsletter 2008-02-02 WordPress Plugin Wordspew 2008-02-02 WordPress Plugin dmsguestbook 1.7.0 2008-01-30 WordPress Plugin WassUp 1.4.3 ( 2008-01-30 WordPress Plugin Adserve 0.2 2008-01-27 WordPress plugin fGallery 2.4.1 2008-01-27 WordPress Plugin WP-Cal 0.3 2008-01-19 WordPress plugin WP-Forum 2008-01-06 WordPress Plugin Wp-FileManager 1.2 2007-12-11 WordPress <= 2.3.1 Charset 2007-12-05 WordPress Plugin PictPress 2007-11-01 WordPress Plugin BackUpWordPress 2007-09-14 WordPress Multiple Versions Pwnpress Exploitation Tookit 2007-06-26 WordPress 2.2 (wp-app.php) 2007-06-06 WordPress 2.2 (xmlrpc.php) 2007-05-21 WordPress 2.1.3 admin-ajax.php 2007-05-01 WordPress plugin myflash <= 1.00 2007-05-01 WordPress plugin wordTube <= 1.43 2007-05-01 WordPress plugin wp-Table <= 1.43 Source milw0rm.com search on WordPress