Hi Folks
As I create a database linked form I am wondering about form security and
especialy malicious script injection. I use cfqueryparam.
I also check each entry to ensure that it conforms to my needs, non blank
entries
etc. It wouldn't be too hard to include in these checks a simple test
Rob,
cfqueryparam will protect you from SQL injection hacks but for other sorts of
security, you might want to look into John Mason's (free / open source)
Portcullis project which is probably just what you are looking for.
http://portcullis.riaforge.org/
You might also look at Pete Frietag's
2 matches
Mail list logo
