A new WP exploit has been discovered that works throuh SQL Injection. The attacker will have access to you login infomation if he is sucessfull.
WP 2.0.5 and prior are vulnerable but for those rolling WP 2.0.6 you fine for now.
SecuriTeamâ„¢ - WordPress Trackback UTF-7 SQL Injection (Exploit)