Anyone else notice this new exploit is hitting A LOT of web sites.

I have seen 5 this week hit with this exploit. 1 site is visited by many of my users. I had to block the website until they get it fixed. it also seems that they are not the ones that got hit, but their hosting provider "'ixwebhosting.com" that got hit.

Must be part of the new exploit tools package, so every script kiddie is running the scanners now