MySQL column truncation allows resetting the passwords of wordpress users to random strings. Combined with weaknesses in PHP's PRNG this allows determining the admin password.

-</p>

Make your website safer. Use an external vulnerability scanner. Nothing to install, zero maintenance!</p>

http://www.securiteam.com/unixfocus/5YP0D1FPFO.html