Last month at the end of June I was invited to speak at the Adobe Developer Week online conference. My talk was titled: Security 101: Protecting your ColdFusion Applications. The slides are available here, and a video here.
Topics covered include:
- IDOR - Insecure Direct Object References
- SQL Injection
- Cross Site Scripting (XSS)
- Server Side Request Forgeries (SSRF)
- Command Injection
- Remote Code Execution (RCE)
- File Uploads
- Path Traversals
- Cross Site Request Forgeries (CSRF)
- The OWASP Top 10 List