6:[["$","$Le",null,{}],["$","div",null,{"className":"min-h-screen bg-gray-100 p-6","children":[["$","$Lf",null,{}],["$","script",null,{"type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"{\"@context\":\"https://schema.org\",\"@type\":\"QAPage\",\"mainEntity\":{\"@type\":\"Question\",\"name\":\"Cross-site scripting and ASP.NET\",\"text\":\"

Does an ASP.NET application protect against cross-site scripting by default? I have read that the machine.config file has an attribute that is set to on by default and this protects against cross-site scripting? Is this true?

\\n\",\"author\":{\"@type\":\"Person\",\"name\":\"Matthew\"},\"upvoteCount\":0,\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"

<system.web>\\n  <pages buffer=\\\"true\\\" validateRequest=\\\"true\\\" />\\n</system.web>\\n

\\n\\n

you can use antxss library as addition

\\n\",\"author\":{\"@type\":\"Person\",\"name\":\"qwr\"},\"upvoteCount\":1}}}"}}],["$","div",null,{"className":"bg-white shadow-md rounded-lg p-6 mb-6 relative","children":[["$","div",null,{"className":"absolute top-4 right-4 flex flex-wrap space-x-2","children":[["$","span","asp.net",{"className":"bg-blue-600 text-white text-sm px-3 py-1 rounded-full","children":["$","$L10",null,{"href":"/discussion/tag/asp.net/1","children":"asp.net"}]}],["$","span","security",{"className":"bg-blue-600 text-white text-sm px-3 py-1 rounded-full","children":["$","$L10",null,{"href":"/discussion/tag/security/1","children":"security"}]}],["$","span","xss",{"className":"bg-blue-600 text-white text-sm px-3 py-1 rounded-full","children":["$","$L10",null,{"href":"/discussion/tag/xss/1","children":"xss"}]}],["$","span","cross-site",{"className":"bg-blue-600 text-white text-sm px-3 py-1 rounded-full","children":["$","$L10",null,{"href":"/discussion/tag/cross-site/1","children":"cross-site"}]}]]}],["$","div",null,{"className":"flex items-center mb-4","children":[["$","img",null,{"src":"https://www.gravatar.com/avatar/8ac0a4a406e83fdf1313ca62c5771ba7?s=256&d=identicon&r=PG","alt":"Matthew","className":"w-16 h-16 rounded-full border"}],["$","div",null,{"className":"ml-4","children":[["$","a",null,{"href":"https://stackoverflow.com/users/1124249/matthew","target":"_blank","rel":"noopener noreferrer","className":"text-lg font-semibold text-blue-600 hover:underline","children":"Matthew"}],["$","p",null,{"className":"text-sm text-gray-500","children":["Reputation: ",4607]}]]}]]}],["$","h1",null,{"className":"text-2xl font-bold text-gray-800 mb-4","children":"Cross-site scripting and ASP.NET"}],["$","p",null,{"className":"text-gray-700 mt-4","dangerouslySetInnerHTML":{"__html":"

\n"}}],["$","div",null,{"className":"text-gray-600 text-sm mt-4","children":[["$","p",null,{"children":["Upvotes: ",0]}],["$","p",null,{"children":["Views: ",492]}]]}]]}],["$","div",null,{"className":"container mx-auto","children":[["$","h2",null,{"className":"text-2xl font-semibold text-gray-800 mb-6","children":["Answers (",1,")"]}],[["$","div","17503377",{"className":"bg-white shadow-md rounded-lg p-6 mb-6","children":[["$","div",null,{"className":"flex items-center mb-4","children":[["$","img",null,{"src":"https://i.sstatic.net/l8Gmb.jpg?s=256","alt":"qwr","className":"w-12 h-12 rounded-full border"}],["$","div",null,{"className":"ml-4","children":[["$","a",null,{"href":"https://stackoverflow.com/users/1235495/qwr","target":"_blank","rel":"noopener noreferrer","className":"text-lg font-semibold text-blue-600 hover:underline","children":"qwr"}],["$","p",null,{"className":"text-sm text-gray-500","children":["Reputation: ",3670]}]]}]]}],["$","p",null,{"className":"text-gray-700 mb-4","dangerouslySetInnerHTML":{"__html":"

<system.web>\n  <pages buffer=\"true\" validateRequest=\"true\" />\n</system.web>\n

\n\n

you can use antxss library as addition

\n"}}],["$","div",null,{"className":"text-gray-600 text-sm","children":["$","p",null,{"children":["Upvotes: ",1]}]}]]}]]]}],["$","div",null,{"className":"bg-white shadow-md rounded-lg p-6 mt-6","children":[["$","h2",null,{"className":"text-2xl font-semibold text-gray-800 mb-4","children":"Related Questions"}],["$","ul",null,{"className":"list-disc list-inside","children":[["$","li","445177",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/445177","className":"text-blue-600 hover:underline","children":"Preventing XSS (Cross-site Scripting)"}]}],["$","li","10507596",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/10507596","className":"text-blue-600 hover:underline","children":"How to prevent XSS in Asp.NET"}]}],["$","li","35578053",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/35578053","className":"text-blue-600 hover:underline","children":"How to solve Reflected Cross-Site Scripting (XSS) Vulnerabilities in HTML/aspx site"}]}],["$","li","30393804",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/30393804","className":"text-blue-600 hover:underline","children":"Classic ASP Cross-Site Scripting"}]}],["$","li","21900022",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/21900022","className":"text-blue-600 hover:underline","children":"Cross site scripting possibility?"}]}],["$","li","8437528",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/8437528","className":"text-blue-600 hover:underline","children":"HttpRequestValidationException and cross-site scripting XSS"}]}],["$","li","8357719",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/8357719","className":"text-blue-600 hover:underline","children":"Protecting my self from cross-site scripting"}]}],["$","li","5874330",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/5874330","className":"text-blue-600 hover:underline","children":"How to avoid Cross site scripting in ASP.NET"}]}],["$","li","5780818",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/5780818","className":"text-blue-600 hover:underline","children":"Web Application Cross Site Scripting"}]}],["$","li","1406063",{"className":"mb-2","children":["$","$L10",null,{"href":"/discussion/solution/1406063","className":"text-blue-600 hover:underline","children":"Microsoft Anti-Cross Site Scripting Library"}]}]]}]]}]]}],["$","$L11",null,{}],["$","$L12",null,{}],["$","$L13",null,{}],["$","$L14",null,{}],["$","$L15",null,{}]]

Cross-site scripting and ASP.NET

Answers (1)

Related Questions