The one I recall was related to the REQUEST scope.
I believe the issue was the concern the CFINCLUDE-ed
template might happen to contain a REQUEST-scoped
variable with the same name as a REQUEST-scoped
variable in the rest of the app, in which case you
could get unexpected results. This issue is not
unique to REQUEST-scoped variables, of course.
best, paul
At 02:50 PM 10/25/00 -0400, you wrote:
>A while ago someone raised the issue of a security problem with using
>variables in CFINCLUDES.
------------------------------------------------------------------------------
To Unsubscribe visit
http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/fusebox or send a
message to [EMAIL PROTECTED] with 'unsubscribe' in the body.
