just a quick note to anyone that uses wordpress on their website, developers have found a XSS vulnerability that could allow people to redirect you from your blog admin.
Comment author URLs were not being fully sanitized before they were displayed. This bug has been fixed in version 2.8.2 so best to upgrade as soon as possible…