Hi JonB
I'll aswer your questions
It does 'sound like' an SQL injection attack on Wordpress, did you have the Wordpress site on the internet with Commenting enabled or no password on root in MySQL??
No, I don't have a site on Internet know, I'm building my site right know. I've a root password for MySQL and XAMMP!!!.
But you seem to still have the problem with a non-WordPress text area, right?
Yes, I thought to my site using wordpress, but when I saw the links injected into the fields to customize wordpress, was when I decided to make my site in php by myself. Now when I get to make my form, I use a textarea for comments, I see the links listed injected again.
Ok, I am decided to reformat my computer and change windows 7 x32 to x64, so I can also mount the additional 4Gb that I have in there.
Did you test with a different browser? If that fixes the problem, re-install your original browser. If its IE = MS has got a way to set the browser back to its defaults.
Yes, I probe with Chrom and don't injected any link, with IE and Firefox and Inject the FKing links
I reinstall Firefox again and it do the same.
I probe making a clean installation on a laptop Intel Core 2 duo, 2Gb Ram, installing Windows 7 x64 (originally come with Windows Vista), downloaded XAMMP from Apachefriend's site and copy my site from a pendrive into httpdocs folder and works fine.
I think that ones of the problem is when I downloaded some free themes for wordpress, that be corrupted with a some php code, that made crazy a php interpreter of the XAMMP instaled. (remember that the problem is with my desktop computer a AMD Phenom II X4 920, 4Gb ram and W7 x32.)
Ok, but in a future, How I could be safe for this???, How can implement some security to keep safe a XAMMP Instalation???, because in Ubuntu, Any can Read/Write without admin or root privilegies, but in windows if I logged and my account I've admin privilegies...
May be posible?, In my account put with normal user privilegies and made another account with admin privilegies to prevent any changes without autorization????, what do you tihink?, maybe I'm thinking out loud!
Thanks