validateRequest problems - .NET Framework

mar

Does anybody know what configuration section should i set
to false here. I also tried setting the page directive
to false but that didn't fix it.
Thanks!
mc
A potentially dangerous Request.Form value was detected
from the client (ResultInput="...="1.0"?> <ResultData
xmlns:xs...").
Description: Request Validation has detected a
potentially dangerous client input value, and processing
of the request has been aborted. This value may indicate
an attempt to compromise the security of your
application, such as a cross-site scripting attack. You
can disable request validation by setting
validateRequest=false in the Page directive or in the
configuration section. However, it is strongly
recommended that your application explicitly check all
inputs in this case.

Exception Details:
System.Web.HttpRequestValidationException: A potentially
dangerous Request.Form value was detected from the client
(ResultInput="...="1.0"?> <ResultData xmlns:xs...").

Source Error:

An unhandled exception was generated during the execution
of the current web request. Information regarding the
origin and location of the exception can be identified
using the exception stack trace below.

Stack Trace:
[HttpRequestValidationException (0x80004005): A
potentially dangerous Request.Form value was detected
from the client (ResultInput="...="1.0"?>
<ResultData xmlns:xs...").]
System.Web.HttpRequest.ValidateString(String s, String
valueName, String collectionName) +230
System.Web.HttpRequest.ValidateNameValueCollection
(NameValueCollection nvc, String collectionName) +99
System.Web.HttpRequest.get_Form() +121
System.Web.UI.Page.GetCollectionBasedOnMethod() +70
System.Web.UI.Page.DeterminePostBackMode() +47
System.Web.UI.Page.ProcessRequestMain() +2106
System.Web.UI.Page.ProcessRequest() +218
System.Web.UI.Page.ProcessRequest(HttpContext context)
+18

System.Web.CallHandlerExecutionStep.System.Web.Htt pApplica
tion+IExecutionStep.Execute() +179
System.Web.HttpApplication.ExecuteStep(IExecutionS tep
step, Boolean& completedSynchronously) +87

----------------------------------------------------------
----------------------
Version Information: Microsoft .NET Framework
Version:1.1.4322.573; ASP.NET Version:1.1.4322.573

Jul 19 '05 #1

Subscribe Post Reply

20698

Wim Hollebrandse

Add validateRequest="false" to your Page directive, eg.:

<%@ Page validateRequest="false" %>

Alternatively - if you want to disable request validation for your whole web
app you can add the following to the system.web section of your web.config:

<pages validateRequest="false" />

Hope that helps,
Wim Hollebrandse
http://www.wimdows.com
http://www.wimdows.net
"mar" <ma****@cox.net> wrote in message
news:06****************************@phx.gbl...

Does anybody know what configuration section should i set
to false here. I also tried setting the page directive
to false but that didn't fix it.
Thanks!
mc
A potentially dangerous Request.Form value was detected
from the client (ResultInput="...="1.0"?> <ResultData
xmlns:xs...").
Description: Request Validation has detected a
potentially dangerous client input value, and processing
of the request has been aborted. This value may indicate
an attempt to compromise the security of your
application, such as a cross-site scripting attack. You
can disable request validation by setting
validateRequest=false in the Page directive or in the
configuration section. However, it is strongly
recommended that your application explicitly check all
inputs in this case.

Exception Details:
System.Web.HttpRequestValidationException: A potentially
dangerous Request.Form value was detected from the client
(ResultInput="...="1.0"?> <ResultData xmlns:xs...").

Source Error:

An unhandled exception was generated during the execution
of the current web request. Information regarding the
origin and location of the exception can be identified
using the exception stack trace below.

Stack Trace:
[HttpRequestValidationException (0x80004005): A
potentially dangerous Request.Form value was detected
from the client (ResultInput="...="1.0"?>
<ResultData xmlns:xs...").]
System.Web.HttpRequest.ValidateString(String s, String
valueName, String collectionName) +230
System.Web.HttpRequest.ValidateNameValueCollection
(NameValueCollection nvc, String collectionName) +99
System.Web.HttpRequest.get_Form() +121
System.Web.UI.Page.GetCollectionBasedOnMethod() +70
System.Web.UI.Page.DeterminePostBackMode() +47
System.Web.UI.Page.ProcessRequestMain() +2106
System.Web.UI.Page.ProcessRequest() +218
System.Web.UI.Page.ProcessRequest(HttpContext context)
+18

System.Web.CallHandlerExecutionStep.System.Web.Htt pApplica
tion+IExecutionStep.Execute() +179
System.Web.HttpApplication.ExecuteStep(IExecutionS tep
step, Boolean& completedSynchronously) +87

----------------------------------------------------------
----------------------
Version Information: Microsoft .NET Framework
Version:1.1.4322.573; ASP.NET Version:1.1.4322.573

Jul 19 '05 #2

Similar topics

validateRequest problems

by: mar | last post by:

Does anybody know what configuration section should i set to false here. I also tried setting the page directive to false but that didn't fix it. Thanks! mc A potentially dangerous...

.NET Framework

ValidateRequest

by: Shaun Dore | last post by:

Hi, I have a web form containing a TextBox that allows users to edit XML files. When the page is posted, the changes are saved. This worked fine until the ValidateRequest 'feature' came along in...

ASP.NET

About validateRequest

by: Benny | last post by:

Hello Experts, If the contents of a text box containing a html tag like formmated characters, i.e. <hello>, and if the validateRequest is set to true, it gives an error when post back: A...

ASP.NET

@Page validateRequest And UserControls

by: Ray Williams | last post by:

I have a specific page that I have chosen to disable the .NET 1.1 validateRequest options by setting the page directive attribute of "validateRequest" from true to false. I manually validate all...

ASP.NET

validateRequest="false" not working in web.config or page directive

by: Tim Zych | last post by:

I'm trying to stop .Net from validating data entered into a textbox. When I enter < or > .Net returns an error: potentially dangerous Request.Form value was detected from the client... so a...

ASP.NET

ValidateRequest bug?

by: Max Metral | last post by:

Ok, I have a global page class derived from System.Web.UI.Page, let's call it BasePage. I have another class derived from that called MemberPage. It checks the Form collection if it's a post for...

ASP.NET

disabling ValidateRequest for one textbox

by: Andy Fish | last post by:

Hi, I have one textbox on the form that needs to have ValidateRequest disabled, but it seems that it can only be enabled/disabled at a page level. assuming I have to disable it at for the...

ASP.NET

validateRequest

by: Dave H | last post by:

If put this into my Web.config. Shouldn't this turn off the ValiateRequest app wide? <configuration> <system.web> <pages buffer="true" validateRequest="false" /> I pass SQL around to...

ASP.NET

*WITHOUT* using: ValidateRequest="False" for the whole page (or my whole site)....

by: \A_Michigan_User\ | last post by:

*WITHOUT* using: ValidateRequest="False" for the whole page (or my whole site).... How would I trap/detect that a textBox contains some illegal characters? (I'm using asp.net v1.1 and vb.net)...

ASP.NET

How to turn on java script in a villaon keypad mobile phone

by: Charles Arthur | last post by:

How do i turn on java script on a villaon, callus and itel keypad mobile phone

Java

Migrating Website to Cloud - Emmanuel Katto

by: emmanuelkatto | last post by:

Hi All, I am Emmanuel katto from Uganda. I want to ask what challenges you've faced while migrating a website to cloud. Please let me know. Thanks! Emmanuel

General

Navigating the Data Structures and Algorithms (DSA)

by: BarryA | last post by:

What are the essential steps and strategies outlined in the Data Structures and Algorithms (DSA) roadmap for aspiring data scientists? How can individuals effectively utilize this roadmap to progress...

Algorithms / Advanced Math

Looking to do Android software development, any suggestions? Is flutter better?

by: nemocccc | last post by:

hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?

General

Is that possible of reading the .csv file in column wise and the column have different lengths ?

by: Sonnysonu | last post by:

This is the data of csv file 1 2 3 1 2 3 1 2 3 1 2 3 2 3 2 3 3 the lengths should be different i have to store the data by column-wise with in the specific length. suppose the i have to...

C / C++

What is ONU?

by: marktang | last post by:

ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...

General

Problem With Comparison Operator <=> in G++

by: Oralloy | last post by:

Hello folks, I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>". The problem is that using the GNU compilers,...

C / C++

Maximizing Business Potential: The Nexus of Website Design and Digital Marketing

by: jinu1996 | last post by:

In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven...

Online Marketing

Discussion: How does Zigbee compare with other wireless protocols in smart home applications?

by: tracyyun | last post by:

Dear forum friends, With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each...

General