Glenn Beck's website, it turns out, can be manipulated into doing strange and NSFW things by messing with the URL. An insecure PHP utility accessible at the site allows for shenanigans like directory traversal, exposing all sorts of things that should not be exposed. Like password files, and a user group named for Rush Limbaugh. [Thanks, Dean!] Update: the discussion thread is down. Here's the Google cache of it.