解决.Net 4.0 A potentially dangerous Request.Form value was detected from the client 异常

最新推荐文章于 2019-07-10 08:37:02 发布
最新推荐文章于 2019-07-10 08:37:02 发布
阅读量106 收藏
点赞数
文章标签: javascript ViewUI

解决ASP.NET 4.0  

"A potentially dangerous Request.Form value was detected from the client". 错误
在.net中,Request时出现有HTML或Javascript等字符串时,系统会认为是危险性值。立马报错。
(在.aspx文件头中加入这句: <%@ Page validateRequest="false" %>,但还是出现相同错误)

或是修改web.config文件: 
<configuration> 
<system.web> 
    <pages validateRequest="false" /> 
</system.web> 
</configuration>

但错误依旧。
对.NET 4.0, 应该加上requestValidationMode="2.0" to the httpRuntime configuration section of the web.config :
<httpRuntime requestValidationMode="2.0"/>(这句重要)

结构:<configuration>
           <system.web>
             <httpRuntime  requestValidationMode="2.0">

 

 

 

  用户在页面上提交表单到服务器时,服务器会检测到一些潜在的输入风险,例如使用富文本编辑器控件(RichTextBox、FreeTextBox、CuteEditor等)编辑的内容中包含有HTML标记或脚本标记,ASP.NET页面会抛出一个"A potentially dangerous Request.Form value was deceted from the client"的异常。这个是ASP.NET页面为了防范页面注入功能的一种保护机制,要取消这种保护,常规的做法是在.aspx文件的<%@Page %>部分加入ValidateRequest="false"属性。但是从.NET 4.0开始你可能需要多修改一个地方,在网站的web.config文件中加入这行配置:

<system.web>
    <compilation debug="true" targetFramework="4.0"/>
    <httpRuntime requestValidationMode="2.0"/>
</system.web>

   同时,你还需要确保页面上用户输入的部分不会存在任何注入攻击的代码,常用的做法是使用Encode处理。

 

 

 

http://www.cnblogs.com/wenjie/archive/2011/06/13/2079785.html

解决升级至.net4后出现A potentially dangerous Request.Form value was detected from the client (转载)

 

weixin_33716154
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
asp.net4.0框架下验证机制失效的原因及处理办法
01-20
ASP.NET请求验证功能为我们提供应用程序的安全保证,避免站点受到XSS跨站脚本攻击。...但是在ASP.NET 4.0框架下,你会发现,即使你这样做,仍然会提示你这样的一个异常“A potentially dangerous Request.Form v
ASP.NET.Web.API.and.Angular.2.17864
10-17
The book aims to be a guide to the readers throughout by building a fully-featured, potentially shippable SPA project with all its core aspects in place: readable URIs, OData retrieval, ...
asp.net 4.0 A potentially dangerous Request.Form value was detected
weixin_34239169的博客
03-31 75
asp.net 4.0 A potentially dangerous Request.Form value was detected fr... 解决方法: 页面中设置ValidateRequest="false",asp.net 4.0需要在web.config文件中配置如下结点 &lt;configuration&gt;    &lt;system.web&gt;     ...
关于potentially dangerous Request.Cookies value解决
dianwo2466的博客
01-02 142
错误提示: A potentially dangerous Request.Form value was detected from the client (txtTest="<b>"). 由于在.net中,Request时出现有HTML或Javascript等字符串时,系统会认为是危 险性值。立马报错。 解决方案一: 在.aspx文件头中加入这句: <%...
A potentially dangerous Request.Form value was detected from the client
weixin_34010949的博客
11-23 46
有些网站程序选择net2.0首页访问正常 后台操作报net版本错误,选择net4.0首页访问报net版本错误,但是后台操作正常修改网站程序的web.config配置文件圈起来的两行用户在页面上提交表单到服务器时,服务器会检测到一些潜在的输入风险,例如使用富文本编辑器控件(RichTextBox、FreeTextBox、CuteEditor等)编辑的内容中包含有HTML标记或...
A potentially dangerous Request.Form value was detected from the client解决方法
weixin_34365417的博客
07-17 123
System.Web.HttpRequestValidationException: A potentially dangerous Request.Form value was detected from the client 方法一:通过在 Page 指令或 配置节中设置 validateRequest="false" 可以禁用请求验证 方法二:正确的做法是在你当前页面添加Page_E...
a project model for the FreeBSD Project.7z
08-21
A project model for the FreeBSD Project Niklas Saers Copyright © 2002-2005 Niklas Saers [ Split HTML / Single HTML ] Table of Contents Foreword 1 Overview 2 Definitions 2.1. Activity 2.2. Process ...
A PACKING GENERATION SCHEME FOR THE GRANULAR.pdf
10-07
The packing program was coded based on a newly proposed scheme which obeys the no interpenetration kinematics of solid bodies. New contact detection algorithms for any two ellipsoids in the packing ...
ASP.NET Web API and Angular 2(PACKT,2016)
10-16
For most developers, writing code is a balance between maintainability and productivity how quickly can you write it versus how much more you have to write in the future. Writing APIs goes some way to...
Server Error in '/folder' Application ... A potentially dangerous Request.Form value was detected ...
VMLINUZ的专栏
10-12 1379
Symptom:<br />When entering a value with angled brackets into a text box on a .NET application the following error is generated in the browser:<br />Server Error in '/folder' Application.<br />A potentially dangerous Request.Form value was detected from th
.net报错----A potentially dangerous Request.Form value was detected from the client
梦悠哉的博客
04-17 2480
问题    .net项目,项目表单里面需要提交带有<strong></strong>或者<br/>这种带有html标签的字符串,提交标签时候就会出现A potentially dangerous Request.Form value was detected from the client错误,如下面截图: 原因   &...
错误解决:[A potentially dangerous Request.Form value was detected from the client]
大伟先生
02-18 1222
错误提示: 从客户端(TextBox1=" A potentially dangerous Request.Form value was detected from theclient (txtTest="").由于在.net中,Request时出现有HTML或Javascript等字符串时,系统会认为是危险性值。立马报错。 解决方案一: 在.aspx文件头中加入这句: <%@ Page
ASP.net 4.0嵌入Ckeditor 3.5 报错A potentially dangerous Request.Form value was detected from the client解决办法
东亮博客
03-29 3344
<br />新发布的版本Ckeditor3.5 嵌入到 ASP.net 4.0 页面时报错如下:<br /><br />--------------------------------------------------------------------------------<br /><br />Server Error in '/' Application. <br />-----------------------------------------------------------------
解决ASP.NET的“A potentially dangerous Request... value was detected
MiNG 的专栏
09-04 2904
最近做一个简单的web项目(.NET Framework 3.5),自定义了一个handler(类似Java内的Servlet),本地开发环境(VS2012)测试没有问题,发布到服务器的IIS就出错了,访问handler映射地址时出现如下提示: A potentially dangerous Request.QueryString value was detected from the clie
解决ASP.NET 4.0 "A potentially dangerous Request.Form value was detected from the client". 错误
apple1122you的专栏
07-28 340
.net中,Request时出现有HTML或Javascript等字符串时,系统会认为是危险性值。立马报错。 (在.aspx文件头中加入这句: ,但还是出现相同错误) 或是修改web.config文件: 但错误依旧。 对.NET 4.0, 应该加上requestValidationMode="2.0" to the httpRuntime conf
ASP.NET 4.0验证请求 A potentially dangerous Request.Form value was detected from the client
weixin_30617561的博客
07-10 170
在安装了Visual Studio 2010 之后,当页面输入框默认情况下输入“<”或者“>”的时候。按照访问策略,这将导致一些安全问题,诸如:跨站脚本攻击 (cross-site scripting attack)。而这个问题的更准确描述则是,当你在安装了.NET Framework 4.0以上版本后,当你的应用程序以.NET Framework 4.0为框架版本,你的任意...
A potentially dangerous Request.Form value was detected from the client 的处理
wangzhi211的专栏
08-20 447
公司系统从Asp.net 2.0升级到Asp.net 4.0 时,部分页面出现A potentially dangerous Request.Form value was detected from the client的错误. 查找发现原因是由于用户在textbox输入了类似Html的标记如:. 在网上找到如下的方案解决, 用户在页面上提交表单到服务器时,服务器会检测到一些潜在的输入风险,
处理asp.net出现A potentially dangerous Request.Form value was detected from the client
码农
06-11 805
错误提示: A potentially dangerous Request.Form value was detected from the client (txtTest="").   由于在.net中,Request时出现有HTML或Javascript等字符串时,系统会认为是危   险性值。立马报错。   解决方案一: 在.aspx文件头中加入这句: 解决
The request was rejected because the URL contained a potentially malicious String "%25",这种异常如何解决
最新发布
06-10
为了解决这种异常,可以尝试以下几种方法: 1. 修改请求中的 URL,将 %25 替换为 %2525,这样可以避免被误解为攻击字符串。 2. 对请求中的 URL 进行合理的编码,避免出现不规范的编码方式。 3. 在服务器端进行...

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值