"Use PDO" in MySQL Table. Is this a hack?
The issue has been resolved, thanks to @raina77ow.
The Db access had been in a really bad shape, and the (quasi obvious) solution was to start using Prepared statements and Query bindings.
Reference : http://codeigniter.com/user_guide/database/queries.html
Looks to me like someone atleast tried to inject code.
use PDO; $db = new PDO(); $db->save();
Or something like that, but ended up saving that data in the user table. I think he must have tried to inject code in registration page (if available). Can't say more without actually knowing changes in database.
Hope this helps.