
Home \| Features \| Demo \| Downloads \| About Us \| Support \| Purchase

Archives By Subject

CFWebstore (43) [RSS]
ColdFusion (13) [RSS]
Database (2) [RSS]
E-Commerce (5) [RSS]
Miscellaneous (10) [RSS]
Search Engine Optimization (1) [RSS]
Web Design (1) [RSS]

Calendar

Come to CFUnited

Latest from MXNA

Flex Formatter
Test Driven Development (TDD) with FlexUnit 4 - Complete Tutorial
My SXSW
Re-Create a Logo in Illustrator Based on a Photo
Common Sense Approach to Apple Rhetoric

NAVIGATION

Home

Recent Entries

No recent entries.

Recent Comments

An Amazing Life
Ginger McCoy said: I just saw for the first time your videos with Taz and learned of his passing. I know what losing y... [More]

Using Google Analytics
Mary Jo said: Not at this time. They appear to be pretty limited in terms of what ecommerce functions they support... [More]

Using Google Analytics
Greg Bray said: Are there any plans to integrate the more advance Google Analytics ecommerce tracking code into CFWe... [More]

An Amazing Life
Peter said: I too just saw one of Taz' YouTube videos and thus learned of his passing. I too lost a Sheltie 15 ... [More]

An Amazing Life
Lauren said: I am so sorry to hear that Taz passed away (I found out through your YouTube webpage). It was over a... [More]

RSS

Search

Subscribe

Enter your email address to subscribe to this blog.

Tags

cfwebstore coldfusion miscellaneous

Other ColdFusion File Upload Attacks

Posted At : September 21, 2009 9:30 PM | Posted By : Mary Jo
Related Categories: CFWebstore,ColdFusion

We're continuing to see malware injection attacks against ColdFusion sites. The latest attack used the public upload in the popular Galleon software. Read the details here:

How Galleon Was Hacked

It appears to be the same user(s) as the ones that have attacked CFWebstore and FCKEditor installations, so they clearly are continuing to shift tactics in order to infect ColdFusion sites in new ways, and also change the file names they use to upload to sites, so be sure to check for *any* sites that have upload features that the hackers could make use of.

Send |

Digg It! |

Linking Blogs | 323 Views

Related Blog Entries

Details on Dealing with the File Upload Hack (July 3, 2009)

Comments (Comment Moderation is enabled. Your comment will not appear until approved.)

There are no comments for this entry.

[Add Comment]

BlogCFC was created by Raymond Camden. This blog is running version 5.8.001.


	Dogpatch Software 8 Old Coach Ln, Carlisle, PA 17013 email: info-at-cfwebstore.com	Last Updated: 03/10/2010 Questions, comments or problems about this site? Copyright ©2010 Dogpatch Software. All rights reserved.