RE: Can I run CFML code that I pull form my database?
The information that I get from the form is not ever going back to the application, only to a VB app that I have created to read the information from the database. I think I am going to follow your suggestion and grab the actual data from the database, use CFFILE to write a temp. cfm file and then include it for the user, this seems to be the best way to go. Thanks Robert J. Bailey (646) 526-4536 -Original Message- From: Chris Maloney [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 09, 2001 4:32 PM To: CF-Talk Subject: RE: Can I run CFML code that I pull form my database? Robert, Considering I've seen other replies to this post that were considerably inaccurate, I'll give you a proper solution. The way to solve this problem is to take the data from the database write it to a file and then use cfinclude to include the file back in and thus have the code executed. Now, there is a danger in using this method, because someone could fill out a form and have code written into your database that may cause damage to your system. However you could easily filter the users input and strip out any tags they may have put into the form. Using evaluate() will work, provided however, you are only using CF functions and not using tags. Since you are using tags this method is not an option. Chris -Original Message- From: Robert J. Bailey [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 09, 2001 1:28 PM To: CF-Talk Subject: Can I run CFML code that I pull form my database? OK, here is what I am doing. I am executing a stored procedure which grabs some code from my SQL server and then displays it on the page. Mostly what this is for is my forms, which I would like to keep in the DB so I can easily change them. The problem being that the CFFORM tag as well as my CFINPUT tags do not execute when doing this and it displays the tag etc in the browser. I am not good at explaining things so if I did not do a good enough job trying to ask this question, please let me know. Thanks for all that will have a solution that I can implement. Robert J. Bailey (646) 526-4536 ~~ Structure your ColdFusion code with Fusebox. Get the official book at http://www.fusionauthority.com/bkinfo.cfm Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
RE: Can I run CFML code that I pull form my database?
Robert, Considering I've seen other replies to this post that were considerably inaccurate, I'll give you a proper solution. The way to solve this problem is to take the data from the database write it to a file and then use cfinclude to include the file back in and thus have the code executed. Now, there is a danger in using this method, because someone could fill out a form and have code written into your database that may cause damage to your system. However you could easily filter the users input and strip out any tags they may have put into the form. Using evaluate() will work, provided however, you are only using CF functions and not using tags. Since you are using tags this method is not an option. Chris -Original Message- From: Robert J. Bailey [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 09, 2001 1:28 PM To: CF-Talk Subject: Can I run CFML code that I pull form my database? OK, here is what I am doing. I am executing a stored procedure which grabs some code from my SQL server and then displays it on the page. Mostly what this is for is my forms, which I would like to keep in the DB so I can easily change them. The problem being that the CFFORM tag as well as my CFINPUT tags do not execute when doing this and it displays the tag etc in the browser. I am not good at explaining things so if I did not do a good enough job trying to ask this question, please let me know. Thanks for all that will have a solution that I can implement. Robert J. Bailey (646) 526-4536 ~~ Structure your ColdFusion code with Fusebox. Get the official book at http://www.fusionauthority.com/bkinfo.cfm Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
RE: Can I run CFML code that I pull form my database?
Yes, I am aware of this, also I am the only one with access to my SQL server. Robert J. Bailey (646) 526-4536 -Original Message- From: Jann VanOver [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 09, 2001 4:04 PM To: CF-Talk Subject: RE: Can I run CFML code that I pull form my database? And PLEASE be aware that this is potentially very dangerous. Do YOU have full control over what goes in and out of the database? Be aware of your risks before you take this action. -Original Message- From: Billy Cravens [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 09, 2001 12:46 PM To: CF-Talk Subject: Re: Can I run CFML code that I pull form my database? Wrap the string from SQL Server in an #Eval()# statement. It'll take a bit of escaping a whatnot, but it should work. -- Billy Cravens HR Web Development, Sabre [EMAIL PROTECTED] "Robert J. Bailey" wrote: > OK, here is what I am doing. I am executing a stored procedure which grabs > some code from my SQL server and then displays it on the page. Mostly what > this is for is my forms, which I would like to keep in the DB so I can > easily change them. The problem being that the CFFORM tag as well as my > CFINPUT tags do not execute when doing this and it displays the tag > etc in the browser. I am not good at explaining things so if I did not do a > good enough job trying to ask this question, please let me know. Thanks for > all that will have a solution that I can implement. > > Robert J. Bailey > (646) 526-4536 > > ~~ Structure your ColdFusion code with Fusebox. Get the official book at http://www.fusionauthority.com/bkinfo.cfm Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
RE: Can I run CFML code that I pull form my database?
And PLEASE be aware that this is potentially very dangerous. Do YOU have full control over what goes in and out of the database? Be aware of your risks before you take this action. -Original Message- From: Billy Cravens [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 09, 2001 12:46 PM To: CF-Talk Subject: Re: Can I run CFML code that I pull form my database? Wrap the string from SQL Server in an #Eval()# statement. It'll take a bit of escaping a whatnot, but it should work. -- Billy Cravens HR Web Development, Sabre [EMAIL PROTECTED] "Robert J. Bailey" wrote: > OK, here is what I am doing. I am executing a stored procedure which grabs > some code from my SQL server and then displays it on the page. Mostly what > this is for is my forms, which I would like to keep in the DB so I can > easily change them. The problem being that the CFFORM tag as well as my > CFINPUT tags do not execute when doing this and it displays the tag > etc in the browser. I am not good at explaining things so if I did not do a > good enough job trying to ask this question, please let me know. Thanks for > all that will have a solution that I can implement. > > Robert J. Bailey > (646) 526-4536 > > ~~ Structure your ColdFusion code with Fusebox. Get the official book at http://www.fusionauthority.com/bkinfo.cfm Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
RE: Can I run CFML code that I pull form my database?
yes, I understand that, but is there anyway I can use any CFML within this that you can think of at all? Thanks! Robert J. Bailey (646) 526-4536 -Original Message- From: Dave f [mailto:[EMAIL PROTECTED]] Sent: Wednesday, May 09, 2001 3:36 PM To: CF-Talk Subject: Re: Can I run CFML code that I pull form my database? It will work if you change to regular HTML FORM tags etc. - Original Message - From: "Robert J. Bailey" <[EMAIL PROTECTED]> To: "CF-Talk" <[EMAIL PROTECTED]> Sent: Wednesday, May 09, 2001 2:27 PM Subject: Can I run CFML code that I pull form my database? > OK, here is what I am doing. I am executing a stored procedure which grabs > some code from my SQL server and then displays it on the page. Mostly what > this is for is my forms, which I would like to keep in the DB so I can > easily change them. The problem being that the CFFORM tag as well as my > CFINPUT tags do not execute when doing this and it displays the tag > etc in the browser. I am not good at explaining things so if I did not do a > good enough job trying to ask this question, please let me know. Thanks for > all that will have a solution that I can implement. > > > Robert J. Bailey > (646) 526-4536 > > > > ~~ Structure your ColdFusion code with Fusebox. Get the official book at http://www.fusionauthority.com/bkinfo.cfm Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
Re: Can I run CFML code that I pull form my database?
Wrap the string from SQL Server in an #Eval()# statement. It'll take a bit of escaping a whatnot, but it should work. -- Billy Cravens HR Web Development, Sabre [EMAIL PROTECTED] "Robert J. Bailey" wrote: > OK, here is what I am doing. I am executing a stored procedure which grabs > some code from my SQL server and then displays it on the page. Mostly what > this is for is my forms, which I would like to keep in the DB so I can > easily change them. The problem being that the CFFORM tag as well as my > CFINPUT tags do not execute when doing this and it displays the tag > etc in the browser. I am not good at explaining things so if I did not do a > good enough job trying to ask this question, please let me know. Thanks for > all that will have a solution that I can implement. > > Robert J. Bailey > (646) 526-4536 > > ~~ Structure your ColdFusion code with Fusebox. Get the official book at http://www.fusionauthority.com/bkinfo.cfm Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
Re: Can I run CFML code that I pull form my database?
It will work if you change to regular HTML FORM tags etc. - Original Message - From: "Robert J. Bailey" <[EMAIL PROTECTED]> To: "CF-Talk" <[EMAIL PROTECTED]> Sent: Wednesday, May 09, 2001 2:27 PM Subject: Can I run CFML code that I pull form my database? > OK, here is what I am doing. I am executing a stored procedure which grabs > some code from my SQL server and then displays it on the page. Mostly what > this is for is my forms, which I would like to keep in the DB so I can > easily change them. The problem being that the CFFORM tag as well as my > CFINPUT tags do not execute when doing this and it displays the tag > etc in the browser. I am not good at explaining things so if I did not do a > good enough job trying to ask this question, please let me know. Thanks for > all that will have a solution that I can implement. > > > Robert J. Bailey > (646) 526-4536 > > > > ~~ Structure your ColdFusion code with Fusebox. Get the official book at http://www.fusionauthority.com/bkinfo.cfm Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
Can I run CFML code that I pull form my database?
OK, here is what I am doing. I am executing a stored procedure which grabs some code from my SQL server and then displays it on the page. Mostly what this is for is my forms, which I would like to keep in the DB so I can easily change them. The problem being that the CFFORM tag as well as my CFINPUT tags do not execute when doing this and it displays the tag etc in the browser. I am not good at explaining things so if I did not do a good enough job trying to ask this question, please let me know. Thanks for all that will have a solution that I can implement. Robert J. Bailey (646) 526-4536 ~~ Structure your ColdFusion code with Fusebox. Get the official book at http://www.fusionauthority.com/bkinfo.cfm Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
