+1 Good idea! -----Original Message----- From: Brad Wood [mailto:[EMAIL PROTECTED] Sent: Monday, July 21, 2008 1:06 PM To: CF-Talk Subject: RE: (ot) URL Hack Attempt Leaves Me Scractching My Head...
Good on ya, mate. If there were an award for using cfqueryparam I would give it to you. Since this seems to be such a hot topic right now, has anyone heard of a CFML code scanner to check for vulnerable cfqueries kind of like the var scoper does? Maybe we should write one to promote security in the CF community. ~Brad -----Original Message----- From: Kris Jones [mailto:[EMAIL PROTECTED] Sent: Monday, July 21, 2008 11:53 AM To: CF-Talk Subject: Re: (ot) URL Hack Attempt Leaves Me Scractching My Head... We're getting hit hard today with this. They're failing, because we use cfqueryparam and cfprocparam. But it is quite annoying. -KJ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;203748912;27390454;j Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:309357 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
