I just wrote this for a perl Cross-Site Scripting quick fix. Im unsure how to move it to CF as I am still learning
$uri =~ s/[^A-Za-z0-9\/]*//g; after the 0-9 is actually a backslash escaping a forwardslash That cleans everything accept Alpha Numeric and / in $uri variable -- ~Eric ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:249021 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
