The current stable release of Worpress (blog software in PHP) still has some flaws. The database schema has no referential contraints, making it vulnerable to sql injection attacks (most of the time from comment spammers). There are no real counter spam measures. No referral tracking. Perhaps some more if I dive more into the code.

The idea is to modify the current database schema, to support referential integrity on MySQL? innodb tables. Add some sort of captcha. And if possible referral tracking.

I would also be nice to be able to upgrade Wordpress 1.0.2 to 1.2. It might be interesting to see whether there are specific XP techniques for migrating older versions to newer versions. For example what if template structures are broken, db schema changes, ...