Solved

Due to the presence of characters known to be used in Cross Site Scripting attacks, access is forbidden. This web site does not allow Urls which might include embedded HTML tags.

Posted on 2009-05-13
4
2,798 Views
Last Modified: 2013-11-08
I am working on a web application.
After entering the data in all the text boxes and pressed the submit button, I got the below error.

"Due to the presence of characters known to be used in Cross Site Scripting attacks, access is forbidden. This web site does not allow Urls which might include embedded HTML tags. "

Can anyone help me why I am getting this error and what is the solution for this.
0
Comment
Question by:GouthamAnand
  • 2
4 Comments
 
LVL 6

Accepted Solution

by:
jaydee-cdgp earned 500 total points
ID: 24372271
Not sure what server(s) you are using but this might help:

http://www-01.ibm.com/support/docview.wss?uid=swg21344242
0
 
LVL 9

Expert Comment

by:tillgeffken
ID: 24372848
ASP.NET is trying to help in making sure the user is not trying to make a
cross site scripting attack no your site. It is checked the first time you
access Request.Form or Request.QueryString collection.

If you insist you can disable it with the validateRequest setting:

http://msdn.microsoft.com/en-us/library/950xf363.aspx

If you do this it will be crucial that you validate any input data to
insure the user is not sending you malicious input.

0
 
LVL 9

Expert Comment

by:tillgeffken
ID: 24372858
Forgot to mention that i recommend not to change the setting. What does your form input look like?
0
 

Author Closing Comment

by:GouthamAnand
ID: 31580868
Thank you
0

Featured Post

3 Use Cases for Connected Systems

Our Dev teams are like yours. They’re continually cranking out code for new features/bugs fixes, testing, deploying, testing some more, responding to production monitoring events and more. It’s complex. So, we thought you’d like to see what’s working for us.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Wouldn’t it be nice if you could test whether an element is contained in an array by using a Contains method just like the one available on List objects? Wouldn’t it be good if you could write code like this? (CODE) In .NET 3.5, this is possible…
Introduction HyperText Transfer Protocol (http://www.ietf.org/rfc/rfc2616.txt) or "HTTP" is the underpinning of internet communication.  As a teacher of web development I have heard many questions, mostly from my younger students who have come to t…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…
Migrating to Microsoft Office 365 is becoming increasingly popular for organizations both large and small. If you have made the leap to Microsoft’s cloud platform, you know that you will need to create a corporate email signature for your Office 365…

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

23 Experts available now in Live!

Get 1:1 Help Now