One of my GUIs was giving a message “A potentially dangerous Request. Form value was detected from the client”
This is because names can contain <> characters.
To stop this message one can add ValidateRequest="false” to web.config.
This leaves the application vulnerable to malicious input eg
This link gives some tags to look out for, but is not exhaustive.
Any suggestions? I'm using visual studio 2008 with asp.net 3.5 - C#