发布字段中带有html标记的表单时出错
我使用的是Ajax控制工具包3.5。我有一张这样的表格:发布字段中带有html标记的表单时出错,html,ajaxcontroltoolkit,Html,Ajaxcontroltoolkit,我使用的是Ajax控制工具包3.5。我有一张这样的表格: <body> <form id="form1" runat="server"> <asp:ToolkitScriptManager ID="ToolkitScriptManager1" runat="server"> </asp:ToolkitScriptManager> <div> <asp:UpdatePanel ID="UpdatePanel1" runat=
<body>
<form id="form1" runat="server">
<asp:ToolkitScriptManager ID="ToolkitScriptManager1" runat="server">
</asp:ToolkitScriptManager>
<div>
<asp:UpdatePanel ID="UpdatePanel1" runat="server">
<ContentTemplate>
<asp:TextBox ID="TextBox1" runat="server"></asp:TextBox>
<asp:Button ID="Button1" runat="server" onclick="Button1_Click" Text="Button" />
<asp:Label ID="Label1" runat="server" Text="Label"></asp:Label>
</ContentTemplate>
</asp:UpdatePanel>
</div>
</form>
例如,当我将“foo”写入TextBox1时,它成功地将其复制到Label1中。但是,如果我在文本框中写入带有一些HTML标记(如“foo”)的文本,我会在IE状态栏中看到以下Javascript错误:
我怎样才能解决这个问题
提前感谢。发布此问题后,我想到了从UpdatePanel中删除表单字段并重试相同操作的想法。答对 了它引发以下异常:
A potentially dangerous Request.Form value was detected from the client (TextBox1="<b>foo</b>").
Description: Request Validation has detected a potentially dangerous client input value, and processing of the request has been aborted. This value may indicate an attempt to compromise the security of your application, such as a cross-site scripting attack. You can disable request validation by setting validateRequest=false in the Page directive or in the configuration section. However, it is strongly recommended that your application explicitly check all inputs in this case.
Exception Details: System.Web.HttpRequestValidationException: A potentially dangerous Request.Form value was detected from the client (TextBox1="<b>foo</b>").
希望这对其他人有帮助
A potentially dangerous Request.Form value was detected from the client (TextBox1="<b>foo</b>").
Description: Request Validation has detected a potentially dangerous client input value, and processing of the request has been aborted. This value may indicate an attempt to compromise the security of your application, such as a cross-site scripting attack. You can disable request validation by setting validateRequest=false in the Page directive or in the configuration section. However, it is strongly recommended that your application explicitly check all inputs in this case.
Exception Details: System.Web.HttpRequestValidationException: A potentially dangerous Request.Form value was detected from the client (TextBox1="<b>foo</b>").
ValidateRequest="false"