PDA

View Full Version : Protect your application from SQL Injection Attacks



JonC
September 17th, 2009, 11:55 AM
Here are a few good articles in regards to securing your application from SQL Injection Attacks. The information is both practical and easy to implement, I would suggest reading them both and implementing all or part of the protection against SQL Injection Attacks that are recommended.

Secure your ColdFusion application against SQL injection attacks (http://www.adobe.com/devnet/coldfusion/articles/sql_injection_05.html)

Ten tips for securing your ColdFusion Application (http://www.adobe.com/devnet/security/articles/topten_tips.html)

jakeh
December 8th, 2009, 11:47 PM
As a security precaution, it's always a good idea to sanitize your input before using it in your application or storing it in a database. Here is a great reference that mentions many more methods for input validation and sanitization:
http://www.owasp.org/index.php/Data_Validation#Data_Validation_and_Interpreter_In jection