Depending on your application, XSS may or may not be a concern. It
usually is, but the magnitude of the problem varies widely, from a
couple fields on one form, to every field on every form. And don't
discount URL fields either, they're just as important.
cheers,
barneyb
On Wed, 18 Aug 2004 18:27:13 -0400, CF Coder2
<[EMAIL PROTECTED]> wrote:
> Where can I learn about XSS protection? I'm sure google can give me zillions of references but if you can recommend one or two that would be great.
>
> > CFQUERYPARAM will protect your database from SQL injection attacks.
> > If you need other things (such as XSS protection), then you'll have
> > to
> > add some more code, usually as part of your validation code.
> >
> > cheers,
> > barneyb
> >
>
>
--
Barney Boisvert
[EMAIL PROTECTED]
360.319.6145
http://www.barneyb.com
[Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings] [Donations and Support]
