Sorcerer's Tower

Entries tagged "qpscanner"

QueryParam Scanner (qpscanner) is a tool I created for scanning CFML code and finding potential risks of SQL injection.

For more information see the blog articles below, or visit the project homepage.

Found 7 entries tagged with "qpscanner", displaying entries 6..7.

View entries: 1..5 6..7

QueryParam Scanner v0.7-dev

The latest development version of qpScanner is now in SVN at RIAForge.

It would be great if people could test it out and let me know of any issues they encounter.

As before, it is all self-contained, so it can be installed and run with minimal effort.

Note: As this is still the development version, you need to use the zip option at the bottom of the RIAForge page, not the "Download Project" link - the button will only give the old version.

When released, v0.7 will be a significant new version, so I want to give a quick discussion of the new features...

QueryParam Scanner

The code for my QueryParam Scanner has been uploaded to RIAForge.

QueryParam Scanner is a simple tool which scans your code for queries and reports back about any variables that are not inside <cfqueryparam/> tags.

Download QueryParam Scanner from RIAForge.