| While it does hit asp sites the technique could be used on any DB based site. Its a standard SQL injection and replaces images or image code.
For any windows server operators then have a look at URLscan version 3 as it can fend it off until you get the code fixed. Similarly htaccess should be able to deal with any attempts on php. Just look for CAST, DECLARE, EXEC etc..... |