I have a very large website that is constantly under attack via SQL injection.
My SQL DB is corrupted weekly.
I am in the process of doing the <cfqueryparam value throughout the site.
But in the short term is there something I can add to the application.cfm if I know part of the string that is always been injected?
For example if I know that the string "www.paydayloans.com" is trying to be maliciously passed is there some code I can add to prevent that from being used in the query?