I run a site using WordPress, and it was recently hijacked by spammers. The result was the page content was deleted and it showed their garbage instead.

After doing some digging around, I discovered that numerous verions of WordPress have had serious security problems. Sadly, this is nothing new.

Note to self: never use WordPress again.
Excellent alternatives: MovableType or Nucleus.

So after much digging + reading, the official "fix" basically amounts to backing everything up, including database content, then installing a new version, then testing stuff, then possibly having to roll it all back if things don't work right.

Freaking waste of time. I don't want to do all of that, I want a damn patch so I can do other stuff and quit screwing around with WordPress!

So here's my quick, easy fix:

Rename your "wp-admin" directory to something else (like "wp-admin-hidden"). Do this through ftp or ssh.

Bad: your admin interface is now completely unusable.

Good: spammer jerks can't screw with your site content, it only took you 5 seconds to make this change, and it's completely reversible in another 5 seconds.

When you need to make content changes, just rename that directory back to "wp-admin", make your content changes, then name it "wp-admin-hidden" again.

Presto.

Your next task is to migrate your content out of WordPress into something un-shitty, like MovableType...