http://blogs.technet.com/srd/archive/2008/05/29/sql-injection-attack.aspx(Special thanks to Neil Carpenter for helping out on this blog post) Recent Trends Beginning late last year, a number of websites were defaced to include malicious HTML <script> tags in text that was stored in a SQL database and used to generateen-USCommunityServer 2.1 SP1 (Build: 61025.2)