Rob Rusher, David An, Sarge, Daryl Banttari
"Hack Proofing ColdFusion 5.0" is the seventh volume in the popular Hack Proofing series and is the only book specifically written for developers devoted to protecting their ColdFusion Web applications. It provides developers with step-by-step instructions for developing secure Web applications and gives the reader crucial understanding and insight into the mind of a hacker.
What are the best practices for securing a coldfusion webpage from malicious users? (including, but not limited to, sql injection attacks)
Is cfqueryparam enough?
Although using a prebuilt solution will work, I recommend knowing all the possible issues that must be protected. Check out Hack Proofing ColdFusion at Amazon.