-
Close Search
I’ve been a CFML developer for a long time, as have a lot of you. But everyone can always learn something new. There’s also a new generation of devs hungry for resources to learn about CMFL, figure out how to move over their existing knowledge, or just get certified as they search for their first ColdFusion position. I get a lot of questions about where to go for CFML knowledge, so I thought I might compile a few things here, […]
Last time I posted, I added a write functionality to my already existing talks on reading from Airtable APIs using GraphQL by integrating with the BaseQL plugin. There’s been some cool updates there and I wanted to share them, as they potentially open up an amazing and exciting new arena for using ColdFusion to write sites that leverage low-code/no-code sources for data. One big piece of news coming from BaseQL is that you no longer need to have a pro […]
HELP!!!! Upgraded CF to 2021 from 10.0. Up to date on CF patches (#3). The following was working for YEARS until we updated CF. NO CODE WAS CHANGED FOR UPGRADE, WE ASSUMED CODE SHOULD REMAIN SAME. IN CF, open spreadsheet USE “SpreadsheetSetCellFormula” to set formula in given cell Write spreadsheet Open sheet in Excel. NO CF calculations are auto-calculated (Again, this was working perfectly for years). In Excel, we see the CF formula properly. ONLY solution is for user to […]
During the last CFSummit (2021) I did a talk on leveraging Airtable’s API using the BaseQL plugin to perform CRUD operations using GraphQL. You can find the talk here: All Videos – ColdFusion (adobe.com) Except, as a couple folks pointed out, I actually just showed how to do R operations, no C U or D, as my time was a bit short. I’d figured extrapolating from my talk would be fairly trivial. As it turns out… not so much, there’s […]
As you all know, the Log4J exploit situation has continued to evolve, and our security team has just released the latest recommendations for dealing with the latest know issues. Read the tech note here: https://helpx.adobe.com/coldfusion/kb/log4j-2-17-0-vulnerability-coldfusion.html Folks who have already updated their Log4J versions to 2.17.1 are at the recommended level. However, please note that even though Log4J 2.17.0 was found to have a potential attack vector, our security team did not find any exploitable attack vector or mechanism with Adobe […]
The big news a few weeks back was the announcement by Microsoft that they now had a fully featured VS Code IDE that runs completely in the browser. This was exciting news for folks who liked the idea of being able to code anywhere, whether on a Chromebook or an iPad or their Tesla display (maybe, honestly haven’t tried that one). In any case, the excitement and hype quickly gave way to the dreaded “but” as limitations on what this […]
after update is it safe to remove/rename older versions of log4j-1.x.x from server?
In the modern world it’s hard to create a good product without integrating it with third party services. One of the most popular services in the business world today is Zoom. I’d like to share some of the experience my team and I have had working with the Zoom API. Hope you enjoy the read and its helpful!
We are pleased to announce that we have released the updates for the following ColdFusion versions: ColdFusion (2021 release) Update 3 ColdFusion (2018 release) Update 13 ColdFusion 2021 Performance Monitoring Toolset Update 3 ColdFusion 2018 Performance Monitoring Toolset Update 4 ColdFusion API Manager updates These updates address vulnerabilities that are mentioned in CVE-2021-44228 and CVE-2021-45046. After applying the update, all Log4j 2.x-related jars will be upgraded to version 2.16.0. Update, Jan 11 2022: After applying the updates here, you can also address the […]
The new security vulnerability Log4j is 10/10 on the “Hacking Richter scale”. How might it be affecting your ColdFusion servers? And what can you do to protect your company? TLDR; This issue affects most servers as Log4j is used by many software tools on modern servers, as well some versions of Adobe ColdFusion. Lucee CFML is not affected. Action: Patch Log4j in all your server software (not just in older versions of CF) Action: Add the JVM arg -Dlog4j2.formatMsgNoLookups=true to […]
Update: the Log4J patch has been uploaded (12/17/2021). More information here: https://coldfusion.adobe.com/2021/12/update-coldfusion-security-updates-log4j-vulnerability/ As most of you are aware, the Log4J (aka “Log4Shell”) vulnerability is currently the hot topic of discussion amongst… well, basically everyone. Adobe engineering & security have been hard at work determining which versions of ColdFusion might be affected and what, if any, workaround/mitigation steps are available. Please head over here: Log4j vulnerability on ColdFusion (adobe.com) and bookmark the page, as it will be updated if/as things change. […]
