Due to the presence of characters known to be used in Cross Site Scripting attacks, access is forbidden. This web site does not allow Urls which might include embedded HTML tags.

I am working on a web application.
After entering the data in all the text boxes and pressed the submit button, I got the below error.

"Due to the presence of characters known to be used in Cross Site Scripting attacks, access is forbidden. This web site does not allow Urls which might include embedded HTML tags. "

Can anyone help me why I am getting this error and what is the solution for this.
GouthamAnandAsked:
Who is Participating?
 
jaydee-cdgpConnect With a Mentor Commented:
Not sure what server(s) you are using but this might help:

http://www-01.ibm.com/support/docview.wss?uid=swg21344242
0
 
tillgeffkenCommented:
ASP.NET is trying to help in making sure the user is not trying to make a
cross site scripting attack no your site. It is checked the first time you
access Request.Form or Request.QueryString collection.

If you insist you can disable it with the validateRequest setting:

http://msdn.microsoft.com/en-us/library/950xf363.aspx

If you do this it will be crucial that you validate any input data to
insure the user is not sending you malicious input.

0
 
tillgeffkenCommented:
Forgot to mention that i recommend not to change the setting. What does your form input look like?
0
 
GouthamAnandAuthor Commented:
Thank you
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.