After I set my <%@ page ValidateRequest ="false" %> , I still get the
error illustrated below. The msdn mentioned something about filtering
using the HTMLEncode. This is a snippet of the code that should display
the result.
</head>
<body MS_POSITIONING= "GridLayout " bgcolor="gainsb oro">
<form id="Form1" method="post" runat="server">
<INPUT style="Z-INDEX: 101; LEFT: 248px; POSITION:absolu te; TOP:184px"
type="button" value=" OK " onclick="OnOK() ;" tabindex="3">
<INPUT style="Z-INDEX: 102; LEFT: 304px; POSITION:absolu te; TOP:184px"
type="button" value="Cancel" onclick="OnCanc el();" tabindex="4">
<TEXTAREA id="Description " style="Z-INDEX: 103; LEFT: 56px; WIDTH:320px;
POSITION: absolute; TOP: 88px; HEIGHT: 70px" rows="4" cols="37"
tabindex="2"></textarea>
<DIV style="DISPLAY: inline; FONT-WEIGHT: bold; Z-INDEX: 104; LEFT:24px;
WIDTH: 296px; POSITION: absolute; TOP: 56px; HEIGHT: 24px"
ms_positioning= "flowlayout">de scription
of changes:</div>
<DIV style="DISPLAY: inline; FONT-WEIGHT: bold; Z-INDEX: 105; LEFT:24px;
WIDTH: 70px; POSITION: absolute; TOP: 24px; HEIGHT: 15px"
ms_positioning= "flowlayout">re vision:</div>
<INPUT id="Revision" style="Z-INDEX: 106; LEFT: 112px;
POSITION:absolu te; TOP: 24px" type="text" tabindex="1">
</form>
</body>
Server Error in 'name of app' Application.
------------------------------------------------------------------------
--------
A potentially dangerous Request.Form value was detected from the client
(RevisionHistor yTable=" <TABLE border=1 styl...").
Description: Request Validation has detected a potentially dangerous
client input value, and processing of the request has been aborted. This
value may indicate an attempt to compromise the security of your
application, such as a cross-site scripting attack. You can disable
request validation by setting validateRequest =false in the Page
directive or in the configuration section. However, it is strongly
recommended that your application explicitly check all inputs in this
case.
Exception Details: System.Web.Http RequestValidati onException: A
potentially dangerous Request.Form value was detected from the client
(RevisionHistor yTable=" <TABLE border=1 styl...").
Source Error:
An unhandled exception was generated during the execution of the current
web request. Information regarding the origin and location of the
exception can be identified using the exception stack trace below.
Stack Trace:
[HttpRequestVali dationException (0x80004005): A potentially dangerous
Request.Form value was detected from the client (RevisionHistor yTable="
<TABLE border=1 styl...").]
System.Web.Http Request.Validat eString(String s, String valueName,
String collectionName) +230
System.Web.Http Request.Validat eNameValueColle ction(NameValue Collection
nvc, String collectionName) +99
System.Web.Http Request.get_For m() +121
System.Web.UI.P age.GetCollecti onBasedOnMethod () +70
System.Web.UI.P age.DeterminePo stBackMode() +47
System.Web.UI.P age.ProcessRequ estMain() +2106
System.Web.UI.P age.ProcessRequ est() +218
System.Web.UI.P age.ProcessRequ est(HttpContext context) +18
System.Web.Call HandlerExecutio nStep.System.We b.HttpApplicati on+IExecutio
nStep.Execute() +179
System.Web.Http Application.Exe cuteStep(IExecu tionStep step, boolean&
completedSynchr onously) +87
------------------------------------------------------------------------
--------
Version Information: Microsoft .NET Framework Version:1.1.432 2.573;
ASP.NET Version:1.1.432 2.573
*** Sent via Developersdex http://www.developersdex.com ***
Don't just participate in USENET...get rewarded for it!