|
|
 Posted 22/04/2003 10:47:00 |
|
|
Forum Newbie
Group: Forum Members
Last Login: 18/05/2003 03:28:00
Posts: 1,
Visits: 1
|
|
Hi, I've just installed InstantForum.NET. When i use the WYSIWYG tool to put in some tables, links, etc, i get the following error... A potentially dangerous Request.Form value was detected from the client (_ctl1:WYSIWYG="<P align=left><FONT ...").
|
|
|
|
| Posted 05/05/2003 13:57:00 |
|
|
IF.NET 4.2 Coming Soon
Group: Administrators
Last Login: Yesterday @ 15:47:32
Posts: 1,954,
Visits: 3,012
|
|
Hi Andy, This is a problem with running InstantForum.NET with the .NET framework v1.1. This is not a problem with the forum software but a new script injection protection feature built into .NET v1.1. To get around this problem you will need to either globally disable this feature within the system.web section of your applications web.config file as shown below... <![CDATA[<system.web><pages validateRequest="false" /></system.web>]]>Or disable this feature from the pages that use this control by adding validateRequest="false" to each page directive. The forum has it's own script protection so you can safely disable this. More information on this can be found within the Request Validation - Preventing Script Attacks release note. I hope this helps. If you have any further questions please don't hesitate to contact me 
Kindest Regards,
Ryan Healey
Director / Developer
 Explore our products...
http://demos.instantasp.co.uk/
|
|
|
|
| Posted 10/06/2003 06:33:00 |
|
|
Forum Newbie
Group: Forum Members
Last Login: 10/06/2003 06:36:00
Posts: 1,
Visits: 1
|
|
With validateRequest = "false", use Server.HtmlEncode() method
|
|
|
|