Opened 4 years ago

Closed 4 years ago

#12819 closed Bug (expired)

A potentially dangerous Request.Form value was detected from the client

Reported by: Ankur Owned by:
Priority: Normal Milestone:
Component: General Version:
Keywords: Cc:

Description

Hi Team, I am working with ckeditor control, not doubt its fast and awesome tool, but today i have encounter a problem that, while saving values to database it gives and error: "A potentially dangerous Request.Form value was detected from the client" with using Asp.net, i have tried all the solutions that are describer on your support from but it didn't work for me and for security reasons i don't want to set ValidateRequest="False/True" because it used for an obvious purpose and i don't want to do that, i also tried to save HtmlEcodeOutPut to database but problem is still there,i also set property of ckEditor HtmlEncodeOutput=true but it also didn't work for me, so plz let me know what is the other possible solution to solve above error. Thank you

Change History (2)

comment:1 Changed 4 years ago by Jakub Ś

Status: newpending

"A potentially dangerous Request.Form value was detected from the client" message is very general and tells nothing. Could you perhaps provide more detailed description - perhaps there is something more in logs? Do you send values from form fields as well or only from CKEdiitor? Perhaps this message concerns other fields?

CKEditor works on HTML and sends HTML. Perhaps error concerns iframes being sent from CKEditor? If that is the case you can simply remove this plugin or configure ACF to block iframes with http://docs.ckeditor.com/#!/api/CKEDITOR.config-cfg-disallowedContent (doesn't work with ACF disabled -> config.allowedContent=true;)

comment:2 Changed 4 years ago by Jakub Ś

Resolution: expired
Status: pendingclosed
Note: See TracTickets for help on using tickets.
© 2003 – 2019 CKSource – Frederico Knabben. All rights reserved. | Terms of use | Privacy policy