Jackson Moore is a self-employed web application developer in Clearwater Beach, Florida. A Certified ColdFusion Developer and engineering graduate of the University of Louisville, Jackson has been providing web development services for the last five years and now specializes in ColdFusion and Java.
To secure your Web-based application you must close all known holes in your
hardware and software as well as those you inadvertently open in your
application's code.
This article addresses possible holes in your ColdFusion code that result
from explicitly trusting the data your code accepts from URL parameters, form
fields, cookies, browser variables, databases, or other external data
sources. You must take measures to ensure that data from these sources won't
cause your application to display improperly, crash, permit a security
breach, or allow unintended server-side operations to be performed.
Although the exploits described in this article aren't specific to ColdFusion
and many have been around for years, we'll examine ColdFusion practices for
protecting your application, including data validation, encryption, and data
integrity.
Untrusted Data Sources
If you c... (more)
Jackson Moore is a self-employed web application developer in Clearwater Beach, Florida. A Certified ColdFusion Developer and engineering graduate of the University of Louisville, Jackson has been providing web development services for the last five years and now specializes in ColdFusion and Java.
David Lucas
Shaul Efraim
Terence Martin Breslin
Cory Marchand
David Hughes
James Carlini
John Iffert
Dan Stolts
Joe Zeto
