Solved

Due to the presence of characters known to be used in Cross Site Scripting attacks, access is forbidden. This web site does not allow Urls which might include embedded HTML tags.

Posted on 2009-05-13
4
2,808 Views
Last Modified: 2013-11-08
I am working on a web application.
After entering the data in all the text boxes and pressed the submit button, I got the below error.

"Due to the presence of characters known to be used in Cross Site Scripting attacks, access is forbidden. This web site does not allow Urls which might include embedded HTML tags. "

Can anyone help me why I am getting this error and what is the solution for this.
0
Comment
Question by:GouthamAnand
  • 2
4 Comments
 
LVL 6

Accepted Solution

by:
jaydee-cdgp earned 500 total points
ID: 24372271
Not sure what server(s) you are using but this might help:

http://www-01.ibm.com/support/docview.wss?uid=swg21344242
0
 
LVL 9

Expert Comment

by:tillgeffken
ID: 24372848
ASP.NET is trying to help in making sure the user is not trying to make a
cross site scripting attack no your site. It is checked the first time you
access Request.Form or Request.QueryString collection.

If you insist you can disable it with the validateRequest setting:

http://msdn.microsoft.com/en-us/library/950xf363.aspx

If you do this it will be crucial that you validate any input data to
insure the user is not sending you malicious input.

0
 
LVL 9

Expert Comment

by:tillgeffken
ID: 24372858
Forgot to mention that i recommend not to change the setting. What does your form input look like?
0
 

Author Closing Comment

by:GouthamAnand
ID: 31580868
Thank you
0

Featured Post

Gigs: Get Your Project Delivered by an Expert

Select from freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely and get projects done right.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Wouldn’t it be nice if you could test whether an element is contained in an array by using a Contains method just like the one available on List objects? Wouldn’t it be good if you could write code like this? (CODE) In .NET 3.5, this is possible…
The Confluence of Individual Knowledge and the Collective Intelligence At this writing (summer 2013) the term API (http://dictionary.reference.com/browse/API?s=t) has made its way into the popular lexicon of the English language.  A few years ago, …
This Micro Tutorial will teach you how to censor certain areas of your screen. The example in this video will show a little boy's face being blurred. This will be demonstrated using Adobe Premiere Pro CS6.
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

776 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question