How to report a security problem with ColdFusion (or any other Adobe product)?

This post is more than 2 years old.

I've mentioned before about the go/wish form at Adobe for reporting bugs and making enhancements requests: http://www.adobe.com/go/wish

Adobe is pretty strict about this. You can blog all day about your never-ending desire for the cfcowbell tag, but unless you make a 'formal' request, you are less likely to get the cowbell you think ColdFusion so desperately needs.

What I didn't know until today (thank you Jeremy Prevost!) is that the go/wish page also makes mention of how to report security problems.

You can report a security problem with any Adobe product here: http://www.adobe.com/support/security/alertus.html

Raymond Camden's Picture

About Raymond Camden

Raymond is a senior developer evangelist for Adobe. He focuses on document services, JavaScript, and enterprise cat demos. If you like this article, please consider visiting my Amazon Wishlist or donating via PayPal to show your support. You can even buy me a coffee!

Lafayette, LA https://www.raymondcamden.com

Archived Comments

Comment 1 by Martijn van der Woud posted on 2/5/2009 at 1:25 AM

Ray do you know if Adobe intends to answer to requests, bug reports, and reports of security problems?

In my experience all you usually get is a generated message saying something like: "thank you for your input", and then you never hear from Adobe again. :(

Comment 2 by Raymond Camden posted on 2/5/2009 at 1:29 AM

I don't believe you are guaranteed a response. The guy who pinged me about this said he got a response pretty quickly, but it was a security issue so that makes sense.

Again though, I can promise that they ARE read. It doesn't mean Adobe will act on them, but they aren't ignored.

Comment 3 by Larry C. Lyons posted on 2/6/2009 at 5:44 AM

<cfcowbell>
that's what CF needs more Cowbell
</cfcowbell>

I'll be here all week folks, try the veal.