I've just discovered that MyAvatars plugin version 0.1 has a spam email vulnerability. MyAvatars plugin shows MyBlogLog avatar images in blog comments, and version 0.1 makes emails visible for spammers to use. Version 0.2 fixes this problem. Newest plugin version can be downloaded from here: http://www.napolux.com/projects/myavatars/ I made a blog entry about this issue, where you can find more & detailed information: http://www.gameproducer.net/2007/01...-has-a-spam-vulnerability-update-immediately/ If you happen to know blogs that still use the old version, I'm sure they would appreciate if you would let the blog owners know about the problem.