Home | Features | Demo | Blog | Downloads | About Us | Support | Purchase
Downloads

3rd Party Add-ons




CFWebstore® gives you amazing control over your e-commerce site. From an amazing array of built-in features and optional settings, to code that is structured to make custom modules easy to write and add, CFWebstore is designed to handle the special needs of each merchant.



username
password
password help


CFWebstore Download

SQL/XSS Injection Blocker v.4
1/09/2010 - 2 Kb
This is version 4 of the SQL Injection blocker tool. I've added a XSS checker as well and corrected an issue with some false positives that we were seeing in the last version. This version also allows you to specify the scope to scan in, public being the default, allowing you to skip the form checks if you need to for specific users (typically backend admin users that may be inserting various script tags through forms). My thanks to Luis Melo for allowing me to borrow his own injection scanner tool for basing this on.

For CFWebstore version 5 and earlier stores, you would need to include this *after* the cfapplication line in database/database.cfm as it will need the application scope turned on (be sure to remove the previous cfinclude in Application.cfm if you were using an earlier version). For other ColdFusion sites, just use it anywhere that works for your application, at some point after application scope has been initialized.

 
Dogpatch Software, LLC
4512 Bekonscot Ave, Raleigh NC 27604
(877) 703-3287
 		 Last Updated: 02/08/2010
Questions, comments or problems about this site?
Copyright ©2010 Dogpatch Software, LLC. All rights reserved.
 
Site Map