A while back a couple of my blogs was hit with a hacker where he inserted multiple spam links in my blogroll. Eventually at wordpress, I found where they talked about the problem and a supposed fix. The problem is it didn’t work. The only thing that worked was renaming the link.php file in wp-admin. If you needed to modify your blogroll you could just temporarily rename it back as link.php.

Better yet, you could remove the php function that calls the blogroll, if you aren’t using blogrolls anyways. I’m not sure if it’s ever been fixed by the latest wordpress installations, but if you have no plans on using a blogroll, you should remove that blogroll function so you dont have to worry about it in the future.