For website administrators, the lesson is clear: Patch, update, and stay on top of the latest versions of the CMS software and related software. Update the core application, plug-ins, and themes whenever there is an update available. If the changelog file says the new version is a security update, make updating a high-priority task.
For PHP developers -- especially those who work with WordPress, Drupal, Joomla, and other CMS software -- it's time to start doing something about the security of the software that powers so many applications on the Web.
Sign up for CIO Asia eNewsletters.