SQL/XSS Injection Blocker v.4 - 1/09/2010
Here you will find currently available extra downloads and add-ons for
CFWebstore. Be sure to read the information included on how to use the
files. If you purchased the software, the latest version is found under
File Downloads after logging in under My Account
File Size: 2 Kb
This is version 4 of the SQL Injection blocker tool. I've added a XSS checker as well and corrected an issue with some false positives that we were seeing in the last version. This version also allows you to specify the scope to scan in, public being the default, allowing you to skip the form checks if you need to for specific users (typically backend admin users that may be inserting various script tags through forms). My thanks to Luis Melo for allowing me to borrow his own injection scanner tool for basing this on.
For CFWebstore version 5 and earlier stores, you would need to include this *after* the cfapplication line in database/database.cfm as it will need the application scope turned on (be sure to remove the previous cfinclude in Application.cfm if you were using an earlier version). For other ColdFusion sites, just use it anywhere that works for your application, at some point after application scope has been initialized.
Survey Add-on - 08/08/2006
File Size: 13 KB
This code includes database tables and a cfm file for creating a simple online survey. Just adjust the code as needed for your site, add your own groups and questions, enter the file as a new page/category template, and then set up a store page using your new survey template.
Migration Scripts for Version 5 - 03/07/2005
File Size: 45 KB
This download contains everything you need to upgrade 4.8 or older stores to the new version 5. Just unzip the files to a new directory, and follow the directions included. A registered copy of version 5 is needed to complete the migration. Includes all the corrections found to this date.