Hi malware fighters,
Most online applications are full of holes and in the" virus and worms" section of the forums we will find the results in the form of number of sites reported to be hacked.
Using Blind Elephant to test - 100 % of phpBB forum software installations were found to be vulnerable to attacks. For other software the results were: Mediawiki (95%), Joomla! (92%), MovableType (91%), phpMyAdmin (85%), Moodle (74%), Drupal (70%) en SPIP (65%), and these results are not much better than with first mentioned software. Only Wordpress has a by far cleaner slate with only 4% versions with holes in it. Reason for this success are easy updating routines.
Blind Elephant can be found here:
http://blindelephant.sourceforge.net/pol