Wordpress 2.1.1. should be updated immediately

The distribution for WordPress 2.1.1 was hacked to include an exploit which would allow remote users to take run malicious code on a webserver. This has been fixed, and an updated issued, for more details, see this post. The upgrade is reasonably quick (though there really should be a script for backing up files/deleting old files/copying in new ones etc) - and if you're running 2.1.1 should be done immediately.

This site has been updated.