|
by luisabreu via LA.NET [EN] on 1/5/2010 10:55:50 PM
[Update: added the missing web.config changed required to make it work] ASP.NET has been performing some sort of validation on user input for ages. For instance, I guess that most of us know that there is a list of chars which can’t be introduced in a textbox (ex.: <) in order to help protect our pages against vulnerabilities. Now, this validation is lazy and is performed against the data passed through the request (even though the user input validation is the most know validation, it’s also
... [ read more ]
|
|
