Click here to Skip to main content
13,147,183 members (28,339 online)
Click here to Skip to main content
Add your own
alternative version

Stats

4K views
1 bookmarked
Posted 11 Oct 2013

Prevent URL from XSS cross site scripting

, 11 Oct 2013
Rate this:
Please Sign up or sign in to vote.
suppose your url ishttp://www.xyz.com/defaultand some hacker try for hacking the website so type some script text on url

Editorial Note

This articles was originally at wiki.asp.net but has now been given a new home on CodeProject. Editing rights for this article has been set at Bronze or above, so please go in and edit and update this article to keep it fresh and relevant.

suppose your url is

http://www.xyz.com/default

and some hacker try for hacking the website so type some script text on url like

http://www.xyz.com/default/<script>alert("xss");</script>

for preventing this types of scripting

use this code inside the web.config file

<httpRuntime requestValidationMode="2.0" />

<customErrors mode="On" defaultRedirect="http://www.msn.com">

</cusomErrors>

//if you try for redirect the url on your domain url (http://www.xyz.com) then give error  so give other url name

//for preventing xss script

License

This article, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

Share

About the Author

ASP.NET Community
United States United States
This member doesn't quite have enough reputation to be able to display their biography and homepage.
Group type: Collaborative Group

765 members


You may also be interested in...

Pro

Comments and Discussions

 
-- There are no messages in this forum --
Permalink | Advertise | Privacy | Terms of Use | Mobile
Web04 | 2.8.170915.1 | Last Updated 11 Oct 2013
Article Copyright 2013 by ASP.NET Community
Everything else Copyright © CodeProject, 1999-2017
Layout: fixed | fluid