XSS vulnerabilities in WordPress 1.2 Mingus
Thomas Waldegger discovered a pretty serious cross-site scripting vulnerability in WordPress. Dougal Campbell notes that WordPress developers are aware of the issue and working on a 1.2.1 release to help solve the problem. Secunia has issued an advisory (level 2 of 5) for all versions of WordPress.
Be aware and ready to apply the new code!