what was said above is what is most likely causing it. I have seen this happen before, and if you are properly cleaning inputs, then I would guess that it is the fault of a web host vulnerability.

__________________
Jason Corradino
Applications Developer, Interactive Support - Tribune Technology
J2EE Development, Script Tinkering - Develop, Support, and Maintain Tribune websites.