Show All Notifications
Post here
Blogs
Language
Performance
Updates
Events
Announcements
Videos
Projects
Webinar
Adobe Certification
Getting Started
Discussions
Videos
Blogs

Configuring JNDI Data sources in ColdFusion

(Originally written in Jul 2015, updated in Jan 2021) For a more complete and updated discussion of this topic, see the 2019 post, Guide to configure JNDI datasource in ColdFusion. This 2015 post below expanded on a still-older one, linked to below. Both are combined and updated into the more recent post. For configuring JNDI data sources, it should firstly be supported by the application server. Tomcat server, which is built-into ColdFusion server, has the support for this by default. […]

Continue reading

Security Enhancements in ColdFusion Splendor – PBKDF2 and AntiSamy

ColdFusion 11 added few more security functions to the rich set of coldfusion security functions. Some of them includes protection against XSS using AntiSamy framework, PBKDF2 key derivation etc. In this blog post we will introduce you to the Antisamy and PBKDF2 key derivation functions added in coldfusion Splendor. AntiSamy Support: If there is a need to accept HTML/CSS input from the user then there is high possibility that the input containing XSS. In this case We can not use […]

Continue reading

Thank you for making CFSummit 2013 a success!

I thank each of the 503 attendees for the overwhelming response and great feedback for the first ever ColdFusion conference from Adobe. The positive feedback post the conference on social media – Twitter, Facebook and the blogs has been really encouraging. We have also made note of some of the improvements that have been suggested and will work on those for a better CFSummit next year. The conference would not have been successful without the efforts from all the speakers. […]

Continue reading

ColdFusion 10 WebSocket Vulnerability

There have been a couple of posts describing the vulnerability using the websocket functionality in ColdFusion 10. The Adobe Product Security Incident Response Team (PSIRT) is aware of this issue and is actively engaged with the ColdFusion Product Team to release a fix. Adobe PSIRT is not aware of this issue being exploited in the wild. There will be a new update released soon that directly prevents the ability to invoke non-remote methods on the CFC using Websockets.      

Continue reading

New Year, New Beginnings

Welcome to the new Adobe ColdFusion blog.  If you have not noticed it yet, this blog runs on ColdFusion and MangoBlog with a new blogs.coldfusion.com domain name. The content of the old blog on https://coldfusion.adobe.com has been fully moved to this new blog. Going forward you will see us more active on all social networking channels where we will reach out to you with more news and updates about Adobe ColdFusion. Be a part of the Adobe ColdFusion page on […]

Continue reading
Adobe ColdFusion
Download a 30 days free trial.

No credit card required.

Download now
Adobe Certified Professional

Adobe ColdFusion
Online certification now available
Register now
Upcoming Events
ColdFusion 2023 Preview webinar
23 Nov
10AM Pacific
Online
Register
Blogs
Language
Performance
Updates
Events
Customers
Announcements
Tutorials
Getting Started
Training Videos
Webinars
Upcoming Webinars
Webinar Recordings
Certificate Program
Program Details
Discussions
Featured Tags
Popular Discussions