Nice work. You should add some more security to your site though. If I request this URL: http://www.wit.tafensw.edu.au/go/course-information/courses-by-faculty/course-details/?ID=854x
I get a very detailed Errormessage: .... 55 : tblFaculty ON tblCourses.Faculty = tblFaculty.FacultyID 56 : WHERE 57 : (tblCourses.CourseID = #url.ID#) 58 : </CFQUERY> First of all: NEVER put a URL variable in a Where statement (or at least use cfqueryparam) 2nd: Turn off the detailed errormessages. I don't wanna try it but with what I see so far I guess I can wipe out your database easily. If you haven't read articles about this topic you might wanna start with somethink like this: http://www.adobe.com/devnet/coldfusion/articles/validvariables.html - Bernd --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "farcry-dev" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/farcry-dev -~----------~----~----~----~------~----~------~--~---
