Macromedia Policy Statement on Best Practices for Flash Security
This Macromedia policy talks about how one should always verify input from parameters passed to any application, and focus specifically on Flash advertisements that "frequently make use of a clickTAG parameter to allow the HTML pages that contain them to specify the click-through destination URL for the advertisement." A malicious HTML page could be constructed to pass a specially constructed URL parameter containing JavaScript or malicious code. This can all be prevented if you utilize the best practice of always checking your Clicktag parameters to make sure they start with HTTP:.
Latest ColdFusion Talk (CF-Talk)
- New CF8 vulnerability
- Using iText with CFML for PDF forms
- OFX
- (ot) Authorize net down Anyone get through support yet?
- PHP MD5 Crypt equivalent in ColdFusion?
- How to clean out HTML from a CFDIV?
- problems in doing a redirect - can someone assist
- AJAX
- Regex wrapping div tags round img tags
- Cleaner way to retrieve a value from an XML node (XML-RPC)
Latest ColdFusion Jobs (CF-Jobs)
- ColdFusion Developer - Truckee, CA
- Mid-to-Senior Coldfusion Developer - Boston (Repost with contact info)
- Mid-to-Senior Level Coldfusion Developer
- Senior ColdFusion Position in New York City
- Cold Fusion developer wanted for remote work
- ColdFusion Developer - Boston, MA
- Senior ColdFusion Developer with Extensive Project Management Skills and Proven SEO Track Record Available
- Twin Cities Short Term Contracts
- ColdFusion Developer available to work remotely - 10 yrs experience & Good rates
- Sr Coldfusion Team Lead - Hawthorne, CA only
Want a number like 800-ColdFusion?
My Toll Free 800 Number provides a vanity phone number service to clients who want more than just digits. How would you like 800-coldfusion?