I don't know if it is just me but everywhere I go I see people complaining about a dodjy wordpress plugin causing malware attacks and other nasty stuff. Is there a reason why wordpress plugins are this vunerable to being attacked by people?
I guess with WP being a popular tool for blogging (it being easy to install also helps), it has a bigger visibility. Kinda like how viruses are mostly written for Windows. I don't use WP, I'd much rather roll my own system for my sites or any of my clients sites. Plugins which are not maintained are also a cause for attacks (as is any other unmaintained script, really).
