Update Log for 1.0.4

04-21 0100 Set focus to first field in login.cfm & caredit.cfm ; Add Model field & change Stock No. & Year query from > to >= in backend search page.
04-20 1000 Set sorted column in inventory.cfm page to bolded text & add legend item to note the same.
04-17 0100 Process varchar variables passed from URL though cfcase so that no varchar variable go directly into the SQL statement. All interger varables passed from the URL are cfqueryparam'ed with a maxlength="5".
04-15 1100 cfqueryparam all variables in the SQL statements which strip out all characters other than a-zA-Z0-9 using cfsqltype="cf_sql_integer" and strips all characters other than 0-9 using cfsqltype="cf_sql_integer". Also use the maxlength="" attibute to limit the length of the number variables in the SQL statements down to 5 charactors.
Useing the cfsqltype and maxlength attributes in the cfqueryparam wrapper will stop SQL injections like "; xp_cmdshell 'format c: /q /yes '; drop database myDB; --" and other injections into variables that are passed via the URL to the SQL statements.
04-10-1700 Limit records displayed in p.cfm to 39 based on running total of Model, Make, ± $2000.
04-09 2300 Place in all pages message announcing browser doesn't support CSS properly. Wrap message in div with ID that has attibute display:none; in CSS. Hide Media="Screen" & Media="Print" CSS files from NS4.x & IE4.x . Both NS4.x & IE4.x now display content only along with browser message.
04-09 1210 Change Mileage to Odometer on all pages.
04-07 0945 Change login.cfm to refresh on invalid username or password.
04-06 1600 Validate Car Dealer Inventory APP for XHTML 1.0 Strict.
04-06 0200 Setup an MouseOver on the vehicle rows in inventory.cfm.
04-04 1740 Set menu seach buttons on inventory.cfm page to not show if there are no items in that group.