Due to what I’m assuming was a flaw in the old version of WordPress we were running someone came in and posted a couple of “hacked by” pieces.
The system has been running on an old version of WP because every time we update the site something crashes and the new Pocketables owners and tech support haven’t returned my inquiries.
I’ve updated the site (and for once it didn’t tank immediately,) but who knows, may be closing the barn doors after the guinea pigs hit the alfalfa bars.
Anyhow, as Pocketables security is probably about the equivalent of a wet sack, and it’ll be days before anyone with shell access can come and look at the probable SQL injection, just letting people know.
Comments and user info is handled by a different website. You should be safe. That said, if anyone gets any weirdness on the site, let us know… I’m checking the things I have access to (CSS, templates, articles, etc) but yeah, waiting on Crowdgather support to look at it or go ahead and give me shell access so I might be able to do something.