site hacked

update, I miss-typed the version of WP that is being used, it is 1.5.3.

sorry again, it is 1.5.1.3

Like I mentioned earlier, I do not necessarily think it was WP that was hacked, I think something else was exploited.

No on the Cpanel.

I have downloaded the upgrade and will get that taken care of as soon as my admins finish doing what they are doing and give me the ok.

Ok, to wrap up the problem that led to the site being hacked.
It was NOT a wordpress problem, they did not hack the script or any direct part of the install. Here is a portion of what the sysadmin on my server had to say
“…I’ve searched the server for vulnerability and [there] are some clients who have old versions of phpBB and this is the way that hacker got in (he have user apache), then he used a script to search all index.php/index.html file and put there “spykids ownz you”. ”

To make a long story short, a different script had a vulnerability in it and that was exploited, and used to re-write a page that WP uses.