> Are you familier with Allair's CF_INPUTFILTER TAG?
> that suppose to remove all special chars from being set and sent???
>
> <cf_inputFilter scopes="FORM,COOKIE,URL" chars="<,>,|,\,?,"
> tags="ALL">
>
> This thing has caused the cookie to be deleted.
> I've removed the COOKIE scope and it worked.
>
> god knows why did they put a cookie scope.
They put a cookie scope in because cookies, like any other data sent from
the client, can be manipulated by a malicious end-user.
Dave Watts, CTO, Fig Leaf Software
http://www.figleaf.com/
voice: (202) 797-5496
fax: (202) 797-5444
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at
http://www.fusionauthority.com/bkinfo.cfm
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
