Security Checklist for ColdFusion & CFML
What's in it?
The ColdFusion security checklist can help you identify the following types of Web Application Vulnerabilities in your CFML code:
- SQL Injection
- Cross Site Scripting (XSS)
- Cross Site Request Forgery (CSRF)
- Session Hijacking
- Malicious File Execution
- Improper Error Handling
- And More.
How can I use it?
The checklist is intended to be used when performing a security audit, or security code review on your ColdFusion code. You can also use it as a guide to help prevent flaws in code as you write it.
This checklist is does not contain every possible security problem that may exist in your CFML code. It is impossible to create such a document.
Foundeo Inc. and it's agents make no claims as to the completeness of the document. Furthermore we are not responsible for any code changes you make. Proceed at your own risk.
Please purchase one copy per developer, contact us for bulk discounts. Sorry we cannot provide refunds for this product for any reason.