Matt Mullenweg has released Wordpress 2.1.1 and 2.0.9. WordPress is an open source (GPL) blog engine based on PHP and MySQL. Both of these releases spackle over specific security holes, without fixing the underlying architectural flaws that caused the problems in the first place. Increasingly it seems possible to run an entire site in WordPress, if only someone could convince Matt to stop using GET for unsafe operations. :-(