Ditto Tony's statement here. First visit to that page gave me the error. At 03:31 PM 3/2/2005, you wrote: >Now that is interesting, because I did not! When I hit the link the >correct page came up. This one might take some searching to find. Yeha. > > >-------------- >Ian Skinner >Web Programmer >BloodSource >www.BloodSource.org >Sacramento, CA > >"C code. C code run. Run code run. Please!" >- Cynthia Dunning > >....-----Original Message----- >....From: Tony Weeg [mailto:[EMAIL PROTECTED] >....Sent: Wednesday, March 02, 2005 12:29 PM >....To: CF-Community >....Subject: Re: Another CF site to hack. >.... >....nahh, it wasnt the idle, cause i just hit it, and got the same error.... >.... >.... >....:) me >.... >.... >....On Wed, 2 Mar 2005 14:24:55 -0600, Raymond Camden <[EMAIL PROTECTED]> >....wrote: >....> Yep. >....> >....> http://www.sierraoutdoorrecreation.com/Locations/Communities.cfm >....> >....> Gave me: >....> >....> Object of type class java.lang.String cannot be used as an array >....> >....> The error occurred in >....> >....D:\Inetpub\wwwroot\SierraOutdoorRecreation.com\wwwroot\Locations\Location >...._Inc.cfm: >....> line 36 >....> >....> 34 : <cfset tempary[1] = listfirst(listlast(cgi.SCRIPT_NAME,"/"),".")> >....> 35 : <cfset tempary[2] = cgi.SCRIPT_NAME> >....> 36 : <cfset temp = Arrayappend(session.breadcrumb,tempary)> >....> 37 : <html> >....> 38 : <head> >....> >....> This was after I had idled for a while, so it looks like the session >....> variable died and your code assumed it would exist. >....> >....> On Wed, 2 Mar 2005 11:31:28 -0800, Ian Skinner >....> <[EMAIL PROTECTED]> wrote: >....> > So can you all tell me the vulnerabilities I have in this site? >....> > >....> > www.sierraoutdoorrecreation.com >....> > >....> > -------------- >....> > Ian Skinner >....> > Web Programmer >....> > BloodSource >....> > www.BloodSource.org >....> > Sacramento, CA >....> > >....> > "C code. C code run. Run code run. Please!" >....> > - Cynthia Dunning >....> > >....> > Confidentiality Notice: This message including any >....> > attachments is for the sole use of the intended >....> > recipient(s) and may contain confidential and privileged >....> > information. Any unauthorized review, use, disclosure or >....> > distribution is prohibited. If you are not the >....> > intended recipient, please contact the sender and >....> > delete any copies of this message. >....> > >....> > >....> >....> >.... >.... > >
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Get help! RoboHelp http://www.houseoffusion.com/banners/view.cfm?bannerid=58 Message: http://www.houseoffusion.com/lists.cfm/link=i:5:148952 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/5 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:5 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.5 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
