Request Validation detected potentially dangerous client input value
Versions:
n/a,
FAQ number:
33,
Old FAQ number: 988
Q: I get this strange error message when I try to save a page in edit mode:
Request Validation has detected a potentially dangerous client input value, and processing of the request has been aborted. This value may indicate an attempt to compromise the security of your application, such as a cross-site scripting attack. You can disable request validation by setting validateRequest=false in the Page directive or in the configuration section. However, it is strongly recommended that your application explicitly check all inputs in this case.
|
A: You can achieve this by editing web.config or machine.config, like this.
<configuration>
<system.web>
<pages validateRequest="false" />
</system.web>
</configuration>
You can find more info about this issue at http://www.asp.net/Forums/ShowPost.aspx?tabindex=1&PostID=99389 and Microsoft Knowledge Base article 821343.