My hosting company is telling me that my site is infected with a couple SQL Injections. I am not 100% if I believe them, it seems as if they are trying to get some money out of us. Is there anyway to have somebody look over our site and tell us if this is true? Our home page is wordpress and our forum is vBulletin. They are trying to charge $95 an hour for work. If anybody from here can do it for less, might consider keeping you on for long term database help.