A XSS exploit has been brought to my attention
in BlogSphere V3.0.1 Beta 7 and earlier. The exploit works by adding
V3.0.1 based site.
I am working on a fix for the exploit
and should have it release very quickly however for the moment I would
suggest disabling comments in the master configuration.