Last month, we switched on scriptProtect in the CF admin on our production
site. This morning, we see a ton of errors in our logs that look like
this...
Diagnostics: ScriptProtect error replacing insecure tag in the CGI scope.
<br>The error occurred on line 1. Message: ScriptProtect error replacing
insecure tag in the CGI scope. Request Method: GET Referer: Script
Name:/404.cfm
Here is the scenario......our hostingprovider is running monthly security
checks on our site. The page they are hitting isn't there, so our 404 runs.
On the query string, they also have a ?<script>alert("some crap")</script>.
script protect is catching that, replacing the script tag, then this error
is being thrown.
Anyone run across this? Google search seems to indicate others are seeing
this, but no one has an answer. seems like scriptProtect would catch this
without throwing an errorMark Davis | Developer ............................................................................ ............................................. Round Table Group, Inc. (281) 717-4575 [email protected] <outbind://696-00000000879C9B08D9D9434BB0980BC1C3F44FE364B25100/www.roundtab legroup.com> www.roundtablegroup.com ............................................................................ ............................................. https://www.roundtablegroup.com/secure/staff/emailSignature/RTG_logo.bmp The Leading Authority in Expert Witness Search & ReferralTM CONFIDENTIALITY NOTE: This e-mail, and any attachments thereto, is intended only for use by the addressee(s) named in the message originated by me and may contain legally privileged and/or confidential information. If the reader of this message is not the intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this email in error, please notify me immediately by telephone and permanently delete the original and any copy of the email, and any printout thereof. Thank you. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the "Houston ColdFusion Users' Group" discussion list. To unsubscribe, send email to [email protected] For more options, visit http://groups.google.com/group/houcfug?hl=en -~----------~----~----~----~------~----~------~--~---
<<inline: image001.gif>>
