Safe Scripting | ColdFusion Developer's Journal

Safe Scripting | ColdFusion Developer's Journal:

Preventing Cross-Site Scripting in ColdFusion

Identify and Filter All Special Characters
CERT identifies the special characters to filter as:

< > ' " % ; ) ( & + '"