pf » Tag: sql injection on Pete Freitag's Blog
July 09, 2007
Announcing Web Application Firewall for ColdFusion
I'm proud to announce a Web Application Firewall for ColdFusion, a new product that I have been working on. This product detects malicious requests (such as SQL Injection, Cross Site Scripting, etc) and then logs, filters, or blocks the request.
May 29, 2007
CFPARAM for Simple String Validation
With the addition of a dozen new type values for the cfparam tag in ColdFusion 7, it has become a handy tool for validation.I have a little trick for those of you who are using earlier versions of ColdFusion that don't support the new types for validation.
November 02, 2006
Web Application Vulnerabilities trump Buffer Overflows
This should be an eye opener to many. In September Mitre reported that web application vulnerabilities are claiming the top three spots on their CVE request list, beating out Buffer Overflows.Cross Site Scripting (21.5%)SQL Injection (14%)PHP includes (9.5%)Buffer overflows (7.
May 18, 2005
Detecting SQL Injection with ScriptProtect
It occurred to me this morning that ScriptProtect can be a handy feature for globally protecting against SQL Injection AttacksDISCLAIMER - just like its inability to protect against all forms of XSS attacks this solution may not protect you from all SQL Injection attacks.
Subscribe to my RSS Feed: 
RSS
RSS
Pete Freitag is a software engineer, and web developer located in central new york.
Pete's company Foundeo Inc. builds products for web developers and provides consulting services.
In 2003 Pete published the ColdFusion MX Developers Cookbook with SAMs Publishing.
More about Pete.
Use SoloSub to subscribe to my RSS feed using Bloglines, MyYahoo, NewsGator, and more.