IanKelley - 9:18 pm on Oct 27, 2013 (gmt 0)
This js might be a popular one and I would assume they are all infected.
It was a customized script that it's safe to assume is used only at php.net.
Considering PHP sites are always being compromised...
...because most sites use PHP.
Indeed, PHP is no more vulnerable than any language, and less than most.