Start here.... http://www.coldfusionmuse.com/index.cfm/2008/7/18/Injection-Using-CAST-And-A SCII
-Mark Mark A. Kruger, CFG, MCSE (402) 408-3733 ext 105 www.cfwebtools.com www.coldfusionmuse.com www.necfug.com -----Original Message----- From: Chad McCue [mailto:c...@advmediaproductions.com] Sent: Friday, April 24, 2009 11:27 AM To: cf-talk Subject: SQL Injection We have one site on our server that was built about 10 years ago. Today some bot is hitting the site and appending their content to the content already in the system. I can't figure out how or where they are getting in. Anyone have any ideas how I can stop this. They are only putting in content and no script tags. I do have the "Enable Global Script Protection" enabled in the cf admin. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:321942 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4