|
| Thread: PCI Compliance | |||
|
|||
| bzydaddy New Member 
Joined: 02/14/09 Posts: 3 |
PCI Compliance 02/14/09 2:14 PM Does anyone have experience getting this software to pass a PCI Compliance test? |
||
| Link | Top | Bottom | |||
| admin Experienced Member 
Joined: 04/08/04 Posts: 3438 |
RE: PCI Compliance 02/14/09 6:08 PM Where is it failing for you? |
||
| Link | Top | Bottom | |||
| bzydaddy New Member
Joined: 02/14/09 Posts: 3 |
RE: PCI Compliance 02/14/09 8:40 PM We use McAfee Secure to scan our sites for PCI compliance. An issue reported was Cross Scripting issue on the login form, registration fields. |
||
| Link | Top | Bottom | |||
| admin Experienced Member
Joined: 04/08/04 Posts: 3438 |
RE: PCI Compliance 02/14/09 8:58 PM I've confirmed that I do not htmlEditFormat within the registration form. I disagree about the login form. If you enter bad values, when the page is reloaded, we don't redisplay the field. I'm fixing the registration stuff now and it will be in the next update. |
||
| Link | Top | Bottom | |||
| bzydaddy New Member
Joined: 02/14/09 Posts: 3 |
RE: PCI Compliance 02/15/09 7:28 AM I meant to say login.cfm, not login form. If you would like to send the update, I will re-run PCI test. Thank you. |
||
| Link | Top | Bottom | |||
| admin Experienced Member
Joined: 04/08/04 Posts: 3438 |
RE: PCI Compliance 02/15/09 9:51 AM I was talking about that actually. You can download the mod here: http://www.coldfusionjedi.com/downloads/login.ray Rename the file to .cfm. |
||
| Link | Top | Bottom | |||
| New Post |