I have a ms sql 2000 db on my shared server. My site is getting hacked almost every alternate day. There are more then 500 asp pages and Its not possible for me to open every page and secure the user input.
Currently the hacker has appended some js script tag in all over my tables (I have more then 150 tables in the db). I do not have a backup at the moment so the only thing I can do is replace that js tag with NULL values.
1) Is there any function/query/stored procedure in MS SQL Server 2000 which would replace a value with another through out all the tables in my db?
2) Is there any script that I can use to keep a backup of my db? Currently my host charges $10 for one time backup. So I cant really afford to pay them that money everyday.
3) Also what do you suggest about avoiding my sites from being hacked.