Looks like at around 8:48AM this morning, someone got into my WordPress installs (all 11 of them, in my account), and managed to add code to wp-login:
Anyone know of any vulnerabilities? My directories were changed to 715 (I think my host did that) this morning, as well.
Anyone know what's going on? I deleted the code, and uploaded a clean copy, and am checking the rest of my directories for stuff changed this morning, as well.