Just want to pass on the word that Adobe has released a security advisory yesterday for ColdFusion 7 and 8. This resolves an identified vulnerability that could potentially allow session hijacking for applications utilizing CFID or CFTOKEN. This does not apply to applications using J2EE Session management.
More details and how to get your ColdFusion server updated can be found on this link:
http://www.adobe.com/support/security/bulletins/apsb07-19.html
Phill Nacelli has been developing software for over 9 years, and has been using ColdFusion since version 4.5. He has engineered and developed multiple web based applications for the federal government, non-profit association/education market and enjoys playing with the latest in programming techniques, frameworks and development tools. Phill is very active in the ColdFusion community via speaking at conferences, contributing articles, user group presentations, community forums/chat rooms and this blog. He currently holds a position as Senior Software Architect at AboutWeb, a leading provider of technology and career development services to small businesses, corporations, associations and government agencies based in Rockville, MD.
Petra
<a href="http://www.romantic-comedies-on-dvd.com/top-10-chi...">top 10 chick flicks</a.