Determining Which Cumulative Hotfixes are Installed on ColdFusion

coldfusion It's not always obvious which Cumulative hotfixes are installed on a ColdFusion server. I'm pleased to announce that the paid subscriptions for HackMyCF now let you know which cumulative (non security) hotfixes you have installed, and which ones you don't.

This entry was:

You May Need to Reapply CF Security Hotfix CVE-2009-1877

coldfusion Back in August Adobe released a series of ColdFusion security Hotfixes in security bulletin APSB09-12. One of the vulnerabilities that was supposed to be fixed was a Cross Site Scripting vulnerability that I found and reported to Adobe, known as CVE-2009-1877.

This entry was:

ColdFusion Server Security Scanner

coldfusion My company Foundeo Inc. released a new free web service today called HackMyCF that allows you to scan your ColdFusion server to detect the absence of recent ColdFusion security hotfixes as well as other security problems.

This entry was:


did you hack my cf?