A quick look in no particular order (except mine first of course) . Yes I am checking out the competition – I love developing, but need to get some return on it. Hence some research on what others are doing.
http://www.exploit-db.com lists vulnerabilities found in various wordpress plugins.
How to stop wordpress trackback notification spam emails