Another Reminder of the Importance of Preventing SQL Injection
One things for sure, it’s certainly an interesting time to be a developer. Hackers and spammers make sure of that :(
SQL injection has been around for so long, it is truly a crime if developers (ColdFusion developers at least) aren’t using cfqueryparam for every WHERE clause in their queries. ColdFusion 8 allows you to use cachedwithin whilst using queryparam, so there is really no excuse.