Whoops I read that too fast and thought you were using CFINPUT. Sorry. Yeah you're right that looks like IE7 on Vista unless it's a forged user-agent.
I would say the user either had a cached version of the page that didn't have the size/maxlength attributes or a bug in the browser or something else off the wall. It could be a hack attempt, but there's more interesting things to try than "Colorado". Ramon Ecung, BS, ACHDS, MCP 713-794-4273 | [email protected] | Unit 421 From: [email protected] [mailto:[email protected]] On Behalf Of Angeli Wahlstedt Sent: Tuesday, April 14, 2009 4:38 PM To: [email protected] Subject: [houcfug] Re: HTML puzzle Actually, there's no Javascript tied to that INPUT tag...besides, isn't the SIZE/MAXLENGTH restriction handled by the browser itself, no matter if Javascript is turned on or off? Angeli From: [email protected] [mailto:[email protected]] On Behalf Of Ecung II,Ramon J Sent: Tuesday, April 14, 2009 4:34 PM To: [email protected] Subject: [houcfug] Re: HTML puzzle Maybe a user has their javascript turned off? Or they're running through some sort of proxy like privoxy that changes the html/javascript code to block ads and such? Ramon Ecung, BS, ACHDS, MCP 713-794-4273 | [email protected] | Unit 421 From: [email protected] [mailto:[email protected]] On Behalf Of Angeli Wahlstedt Sent: Tuesday, April 14, 2009 4:32 PM To: [email protected] Subject: [houcfug] HTML puzzle Okay, this is more of a HTML issue than a Cold Fusion issue (though it's being generated by a Cold Fusion page) but I got a head-scratcher I'd like to run by you folks. I just got an automatically generated email from one of the sites I work on, containing a Cold Fusion error. The error was caused by a CFQUERYPARAM tag trying to save a too-long string to a database. I went to the original page, thinking that an INPUT tag is missing a MAXLENGTH attribute somewhere. But it turns out that the INPUT tag indeed has its both SIZE and MAXLENGTH in place. It works as it should when I tested it in IE 7.0 and Foxfire. So, the question is, how did this too-long string (which was the value "Colorado") get past a 2-character text box? One possibility would be a custom-written form outside the web server, but the HTTP_REFERRER variable pointed at the original page on the web server. If it helps anything, the user agent was "Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; GTB5; SLCC1;.NET CLR 2.0.50727; .NET CLR 3.0.04506; MS-RTC LM 8" which looks like IE 7.0, if I'm reading it correctly. Puzzledly yours, Angeli Wahlstedt, IdeaSculpt LLC --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the "Houston ColdFusion Users' Group" discussion list. To unsubscribe, send email to [email protected] For more options, visit http://groups.google.com/group/houcfug?hl=en -~----------~----~----~----~------~----~------~--~---
