Opened 10 years ago
Closed 10 years ago
#12819 closed Bug (expired)
A potentially dangerous Request.Form value was detected from the client
Reported by: | Ankur | Owned by: | |
---|---|---|---|
Priority: | Normal | Milestone: | |
Component: | General | Version: | |
Keywords: | Cc: |
Description
Hi Team, I am working with ckeditor control, not doubt its fast and awesome tool, but today i have encounter a problem that, while saving values to database it gives and error: "A potentially dangerous Request.Form value was detected from the client" with using Asp.net, i have tried all the solutions that are describer on your support from but it didn't work for me and for security reasons i don't want to set ValidateRequest="False/True" because it used for an obvious purpose and i don't want to do that, i also tried to save HtmlEcodeOutPut to database but problem is still there,i also set property of ckEditor HtmlEncodeOutput=true but it also didn't work for me, so plz let me know what is the other possible solution to solve above error. Thank you
Change History (2)
comment:1 Changed 10 years ago by
Status: | new → pending |
---|
comment:2 Changed 10 years ago by
Resolution: | → expired |
---|---|
Status: | pending → closed |
"A potentially dangerous Request.Form value was detected from the client" message is very general and tells nothing. Could you perhaps provide more detailed description - perhaps there is something more in logs? Do you send values from form fields as well or only from CKEdiitor? Perhaps this message concerns other fields?
CKEditor works on HTML and sends HTML. Perhaps error concerns iframes being sent from CKEditor? If that is the case you can simply remove this plugin or configure ACF to block iframes with http://docs.ckeditor.com/#!/api/CKEDITOR.config-cfg-disallowedContent (doesn't work with ACF disabled -> config.allowedContent=true;)