Sorry, I posted to the wrong list initially. Here is my question for the discussion list:
I've been asked to investigate this by someone at my company. They found this link as a CF solution. Do you all have any thoughts or opinions on the value of this approach? It seems to only work for form submit actions. What would you do if you had a link to an action page? How would you mitigate against this type of attack? Your thoughts are appreciated. ------------------------------------------------------------- To unsubscribe from this list, manage your profile @ http://www.acfug.org?fa=login.edituserform For more info, see http://www.acfug.org/mailinglists Archive @ http://www.mail-archive.com/discussion%40acfug.org/ List hosted by http://www.fusionlink.com -------------------------------------------------------------
