WordPress versions 1.5.1.2 and earlier contain a vulnerability that allows remote attackers to execute malicious code. This vulnerability is found in the XMLRPC server and is caused by input that is not filtered properly. This unfiltered input is stored in an XML file called HTTP_RAW_POST_DATA