I saw the same thing at one of my sites this weekend. With the same email address ([EMAIL PROTECTED]) Should we report this email address to AOL?
They tried to put in place of the integer in this URL: http://www.bridesmaid.com/index.cfm/fuseaction/fashion/stylechoice/663 tee hee --- thank you cfqueryparam! If anyone knows of any real danger here, please let us know! Jevo chad gray wrote: >I have not kept up on the latest forms of spam delivery, but i got a bunch of >messages in my inbox this morning where somone was systematically pasting the >below code into each field of a form that uses CFMail to send an email. > >I am wondering if this is a way that spammers send mail? > >Is there a way to inject code into a form and make CFMail send to other >address? Or is this attack targeted for CGI scripts or something else? > >[EMAIL PROTECTED] >Content-Type: multipart/mixed; boundary="===============0673320582==" >MIME-Version: 1.0 >Subject: 9009a8c2 >To: [EMAIL PROTECTED] >bcc: [EMAIL PROTECTED] >From: [EMAIL PROTECTED] > >This is a multi-part message in MIME format. > >--===============0673320582== >Content-Type: text/plain; charset="us-ascii" >MIME-Version: 1.0 >Content-Transfer-Encoding: 7bit > >rzptn >--===============0673320582==-- > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Logware (www.logware.us): a new and convenient web-based time tracking application. Start tracking and documenting hours spent on a project or with a client with Logware today. Try it for free with a 15 day trial account. http://www.houseoffusion.com/banners/view.cfm?bannerid=67 Message: http://www.houseoffusion.com/lists.cfm/link=i:4:216698 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
