maybe you should check this

diablo	#1 2011-12-26 01:30
Members Thanked: 5 times	im no server expert and the text was TLDR; http://www.pcworld.com/businesscenter/article/246948/hackers_abuse_php_setting_to_inject_malicious_code_into_websites.html "Always code as if the guy who ends up maintaining your code will be a violent psychopath who knows where you live."

Trustmaster	#2 2011-12-26 07:24
Administrators Thanked: 263 times	I've seen the report before but unfortunately there are no details about vulnerable PHP versions, neither about mitigation. However, I couldn't confirm this on my servers, so definitely not all servers are affected. May the Source be with you!

urlkiller	#3 2011-12-30 08:19
Contributors Thanked: 3 times	i can confirm that problem on my servers too... most of my clients had that, in 80% of the cases wordpress systems where affected (PHP 5.3.8) URL shortener: <a href="http://bbm.li/!7AD5C7">http://bbm.li/!7AD5C7</a>