Write the steps to avoid Script Injection attacks?

 Posted by Tripati_tutu on 11/18/2010 | Category: ASP.NET Interview questions | Views: 2585 | Points: 40

Step-1: First encode the user input with the HtmlEncode methods so that the method will return HTML into its text representation.

Step-2: When you are using bound fields of a Data controls, then set the BoundField object's HtmlEncode property to true which causes the Data control to encode input given by the user when you are in edit mode of that Data control.

Asked In: Many Interviews | Alert Moderator 

Comments or Responses

Login to post response