i’ve found both WP-CACHE and supercache to be allowing people to inject php files into my wp-content, wp-content/cache, and wp-content/cache/supercache directories.
i’ve changed the permissions on wp-content to 755. is there anything else i can do to secure my wordpress install from these injections?
