I just saw this article on the Adobe Developer Center written by Ryan Wagener discussing what SQL injection attacks are and how to prevent them in your ColdFusion applications. If you are a new developer who does not understand the ramifications of a SQL injection attack, then this is a must read. ColdFusion has quite a few built in mechanisms that you can use throughout your code to help prevent these attacks. As Ryan pointed out in his article, it's up to the developer to prevent these attacks. In other words, it's up to YOU to write your code in a way that makes these attacks a mute point for your application. Any language can fall prey to these attacks, not just ColdFusion. Whatever language you program in, you should learn the methods to prevent these attacks.
The Dev Shack
Technology and Programming Blog
ColdFusion
Protecting ColdFusion Applications Against SQL Injection Attacks
Discussion
2 Responses to “Protecting ColdFusion Applications Against SQL Injection Attacks”
Post a comment
© 2012 The Dev Shack. All Rights Reserved.
Powered by WordPress. Designed by 
I would like also to share with you a great tool to protect against sql injection attacks. Its called dotdefender. We’re using it and got to say that the amount of attacks dropped.
You can download it at http://www.applicure.com
Dani
Posted by Prevent SQL Injection | February 19, 2009, 10:53 AMI would like also to share with you a great tool to protect against sql injection attacks. Its called dotdefender. We’re using it and got to say that the amount of attacks dropped.
You can download it at http://www.applicure.com
Dani
Posted by Prevent SQL Injection | February 19, 2009, 5:53 AM