Twitter bug creates account hijacking peril – i’m not sure that this is exactly related to what i have been experiencing, but it does explain a lot, especially since i didn’t start experiencing a problem until after i had “disabled” my twitter account…
now to determine whether or not there is a way to prevent cross-site scripting in wordpress…
growl, grumble, gripe, complain… 😡
ETA: it is as i feared: WordPress 3.0.1 – Cross Site Scripting Issue and Twitter XSS Proof of Concept – it doesn’t work if you’re running NoScript (which i am), but there it is… i suppose now it’s just a matter of waiting until somebody comes up with a fix for it…