*/ngg.js
there seems to be a new wave of sql injections ending with ngg.js
Example:
- www.allocbn.mobi/ngg.js
- www.testwvr.com/ngg.js
- www.canclvr.com/ngg.js
- www.cont67.com/ngg.js
- www.lokriet.com/ngg.js
- www.mainbvd.com/ngg.js
- www.ktrcom.com/ngg.js
- www.stiwdd.com/ngg.js
- www.portwbr.com/ngg.js
- www.upcomd.com/ngg.js
- www.adwadb.mobi/ngg.js
- www.catdbw.mobi/ngg.js
- www.ucomddv.com/ngg.js
- www.appdad.com/ngg.js
- www.dbgbron.com/ngg.js
- www.bnradd.mobi/ngg.js
updates on 9th July:
- www.gbradp.com/ngg.js
- www.ausadd.com/ngg.js
- www.usabnr.com/ngg.js
- www.gbradw.com/ngg.js
- www.clrbbd.com/ngg.js
July 17, 2008 at 3:10 pm
My site also infected with this injection
Please tell me how to prevent my site
best regards
Shekhar
July 17, 2008 at 9:35 pm
check out http://www.microsoft.com/technet/security/advisory/954462.mspx