Pete Freitag Pete Freitag

Securing ColdFusion Applications - DevWeek 2021


It was great to be a speaker at the ColdFusion DevWeek event last week. I spoke on the topic Securing ColdFusion Applications.

As promised here are the slides, and the example code I used can be found here.

In this talk I thought it would be fun to come up with a list of the Top 10 Risks or Issues ColdFusion developers should be aware of. As with any security top ten list, there are more than 10 security issues to be aware of, so this is just a starting point.

  1. Old Code
  2. Failure to Delegate
  3. Security Configuration
  4. Various Injection Attacks
  5. XSS
  6. Authentication / Authorization
  7. Remote Code Execution
  8. SQL Injection
  9. File System Issues
  10. Unpatched Known Vulnerabilities

Like this? Follow me ↯

Securing ColdFusion Applications - DevWeek 2021 was first published on June 29, 2021.

If you like reading about security, presentations, or adobe then you might also like:

FuseGuard Web App Firewall for ColdFusion

The FuseGuard Web Application Firewall for ColdFusion & CFML is a high performance, customizable engine that blocks various attacks against your ColdFusion applications.

Post a Comment