If your Customer Portal site has a "mobile" or "basic" directory and associated pages in your "views/pages" directory your site might be at risk; especially if you don't use these pages! For nearly all sites created since the release of CP2, this will be the case unless you've taken manual steps to remove them.
CXDev Toolbox 2.0 Now Available
Download the latest CXDev Toolbox. Learn more about the update from the announcement article.
Please see here for details on the recent toolbox outage.
Expert Articles
Comprehensive resources for Oracle RightNow developers and consultants
Security Vulnerabilites in Customer Portal pagesets
Posted by AW Rowse on Tuesday, May 26, 2015 - 10:28am
Duplicate Contacts and Unique Fields
Posted by Ben Johns on Thursday, May 21, 2015 - 11:15pm
In order to reduce duplicate contact records, it would be useful to be able to specify unique contact fields (such as mobile phone number, or a particular custom field), similar to how email addresses are handled as unique identifiers. If the client needs a full-fledged solution for this across their entire system, this is difficult to do from a purely technical level. Most clients simply train their agents to first search for existing contacts and have a business process for merging duplicate contacts when manually found in the system, which is good enough for most.
Fun with Cloud9 IDE and CP3
Posted by Ben Johns on Tuesday, April 7, 2015 - 8:40pm 
Today I had a bit of fun with Cloud9 IDE, which is one of the better cloud-based IDEs I've found. It is geared mostly towards front-end web development but has a fully functional Ubuntu OS underneath running in a Docker instance, so you can pretty much do anything.
Quick Tip: Skinning Customer Portal Modal Dialogs
Posted by AW Rowse on Wednesday, April 1, 2015 - 3:53pm When skinning Customer Portal it is easy to forget the YUI-based modal dialogs unless one happens to pop up during your working session. Most commonly it is the Form Expiration dialog which reminds me that I have additional work to ensure a unified brand experience. This dialog will appear after 5 minutes, which is a long time to wait when testing CSS changes.
New Site Feature: CX Features by Version matrix
Posted by AW Rowse on Thursday, March 26, 2015 - 11:40am Today I published a document that I've been working on for a while; my hope is to extend the benefit I receive to everyone else in the community. This document is a list of Oracle RightNow CX features by version. This will be a living page permanently in the left-hand navigation of CXDeveloper.com. As new CX versions are released, the document will be updated accordingly.