You use ColdFusion because of security?
Is this sarcasm?
Behold:
Allaire ColdFusion Server 4.5.1 Administrator Login Password DoS Vulnerability
(vulnerabilities)
url: http://www.securityfocus.com/bid/1314
Last modified on: 2000-6-7 - Relevance: 1.000000
Allaire ColdFusion 4.5.1 Cached File Request DoS Vulnerability (vulnerabilities)
url: http://www.securityfocus.com/bid/1192
Last modified on: 2000-5-10 - Relevance: 0.999962
Allaire ColdFusion Path Disclosure Vulnerability (vulnerabilities)
url: http://www.securityfocus.com/bid/1021
Last modified on: 2000-3-1 - Relevance: 0.999867
Allaire ColdFusion 4.0x CFCACHE Vulnerability (vulnerabilities)
url: http://www.securityfocus.com/bid/917
Last modified on: 2000-1-4 - Relevance: 0.999788
Allaire ColdFusion Undocumented CFML Tags Vulnerability (vulnerabilities)
url: http://www.securityfocus.com/bid/550
Last modified on: 1999-7-29 - Relevance: 0.999571
Allaire ColdFusion Remote File Display, Deletion, Upload and Execution Vulnerability
(vulnerabilities)
url: http://www.securityfocus.com/bid/115
Last modified on: 1998-12-25 - Relevance: 0.999274
Allaire ColdFusion Start/Stop Denial of Service Vulnerability (vulnerabilities)
url: http://www.securityfocus.com/bid/274
Last modified on: 1998-5-19 - Relevance: 0.998975
Allaire ColdFusion CFCRYPT.EXE Vulnerability (vulnerabilities)
url: http://www.securityfocus.com/bid/275
Last modified on: 1998-5-19 - Relevance: 0.998975
Compare this to PHP's record:
PHP Error Logging Format String Vulnerability (vulnerabilities)
url: http://www.securityfocus.com/bid/1786
Last modified on: 2000-10-12 - Relevance: 1.000000
PHP Upload Arbitrary File Disclosure Vulnerability (vulnerabilities)
url: http://www.securityfocus.com/bid/1649
Last modified on: 2000-9-3 - Relevance: 0.999946
PHP3 'safe_mode' Failure Vulnerability (vulnerabilities)
url: http://www.securityfocus.com/bid/911
Last modified on: 2000-1-4 - Relevance: 0.999614
PHP/FI mylog/mlog Vulnerability (vulnerabilities)
url: http://www.securityfocus.com/bid/713
Last modified on: 1997-10-19 - Relevance: 0.998510
PHP/FI Buffer Overflow Vulnerability (vulnerabilities)
url: http://www.securityfocus.com/bid/712
Last modified on: 1997-4-17 - Relevance: 0.998257
Not perfect, but considering the source is available for audit not too bad.
Slashdot Mirror
Allaire ColdFusion Server 4.5.1 Administrator Login Password DoS Vulnerability (vulnerabilities) url: http://www.securityfocus.com/bid/1314 Last modified on: 2000-6-7 - Relevance: 1.000000
Allaire ColdFusion 4.5.1 Cached File Request DoS Vulnerability (vulnerabilities) url: http://www.securityfocus.com/bid/1192 Last modified on: 2000-5-10 - Relevance: 0.999962
Allaire ColdFusion Path Disclosure Vulnerability (vulnerabilities) url: http://www.securityfocus.com/bid/1021 Last modified on: 2000-3-1 - Relevance: 0.999867
Allaire ColdFusion 4.0x CFCACHE Vulnerability (vulnerabilities) url: http://www.securityfocus.com/bid/917 Last modified on: 2000-1-4 - Relevance: 0.999788
Allaire ColdFusion Undocumented CFML Tags Vulnerability (vulnerabilities) url: http://www.securityfocus.com/bid/550 Last modified on: 1999-7-29 - Relevance: 0.999571
Allaire ColdFusion Remote File Display, Deletion, Upload and Execution Vulnerability (vulnerabilities) url: http://www.securityfocus.com/bid/115 Last modified on: 1998-12-25 - Relevance: 0.999274
Allaire ColdFusion Start/Stop Denial of Service Vulnerability (vulnerabilities) url: http://www.securityfocus.com/bid/274 Last modified on: 1998-5-19 - Relevance: 0.998975
Allaire ColdFusion CFCRYPT.EXE Vulnerability (vulnerabilities) url: http://www.securityfocus.com/bid/275 Last modified on: 1998-5-19 - Relevance: 0.998975
Compare this to PHP's record:PHP Error Logging Format String Vulnerability (vulnerabilities) url: http://www.securityfocus.com/bid/1786 Last modified on: 2000-10-12 - Relevance: 1.000000
PHP Upload Arbitrary File Disclosure Vulnerability (vulnerabilities) url: http://www.securityfocus.com/bid/1649 Last modified on: 2000-9-3 - Relevance: 0.999946
PHP3 'safe_mode' Failure Vulnerability (vulnerabilities) url: http://www.securityfocus.com/bid/911 Last modified on: 2000-1-4 - Relevance: 0.999614
PHP/FI mylog/mlog Vulnerability (vulnerabilities) url: http://www.securityfocus.com/bid/713 Last modified on: 1997-10-19 - Relevance: 0.998510
PHP/FI Buffer Overflow Vulnerability (vulnerabilities) url: http://www.securityfocus.com/bid/712 Last modified on: 1997-4-17 - Relevance: 0.998257
Not perfect, but considering the source is available for audit not too bad.