Hi there - we have recently had what seems to be an SQL injection attack - but this time the code inserted into DB fields appears to be random links to other sites. When I say random, I mean that each row within the table has had different content appended to the original content. I've attached an example of what has been appended.
The main part of it is within <SPAN STYLE='display:none'> </SPAN> followed by a comment within <!-- -->. The format of the injection appears consistent throughout although the content differs between the start/end tags inserted. I hope this makes sense!
I need to clean the database of all this additional content obviously. I have a script that cleans the db from previous attacks - but the difference here is that content to be removed varies throughout each row. Is there a way to UPDATE by removing from <SPAN STYLE='display:none'> UNTIL -->
I hope this makes sense. And thanks in advance.
Rob
The main part of it is within <SPAN STYLE='display:none'> </SPAN> followed by a comment within <!-- -->. The format of the injection appears consistent throughout although the content differs between the start/end tags inserted. I hope this makes sense!
I need to clean the database of all this additional content obviously. I have a script that cleans the db from previous attacks - but the difference here is that content to be removed varies throughout each row. Is there a way to UPDATE by removing from <SPAN STYLE='display:none'> UNTIL -->
I hope this makes sense. And thanks in advance.
Rob