Potentially dangerous Request.Form value

[dpdg]

I've been getting this error while testing a new app I am developing. What does this mean?

Server Error in '/code' Application.
--------------------------------------------------------------------------------

A potentially dangerous Request.Form value was detected from the client (grdCode:_ctl4:txtCode="...nt" %> <script runat="serve..."). 

Description: Request Validation has detected a potentially dangerous client input value, and processing of the request has been aborted. This value may indicate an attempt to compromise the security of your application, such as a cross-site scripting attack. You can disable request validation by setting validateRequest=false in the Page directive or in the configuration section. However, it is strongly recommended that your application explicitly check all inputs in this case.

What can I do to eliminate it?

 

[ca8msm]

You can set the page validation tag to stop it appearing e.g.

<%@ Page validateRequest="false"  %>

If you simply enter your error message in google you will find lots of sites that would have explained this to you, one of which is:

http://www.asp.net/faq/RequestValidation.aspx

____________________________________________________________

Need help finding an answer?

Try the Search Facility or read FAQ222-2244 on how to get better results.