Home
ASP.NET Forums » General ASP.NET » Getting Started » difficult....<object> tag and widgets

difficult....<object> tag and widgets

Last post 10-01-2007 4:25 AM by Peter Smith. 0 replies.

Sort Posts:

  • difficult....<object> tag and widgets

    10-01-2007, 4:25 AM
    • Contributor
      4,291 point Contributor
    • Peter Smith
    • Member since 03-19-2005, 9:58 AM
    • Posts 1,608

    I want to enable users to use widgets on my site, such as Youtube. The code syntax for these widgets is:

    <object width="425" height="350"><param name="movie" value="http://www.youtube.com/v/p4cP2oy4ebE"></param><param name="wmode" value="transparent"></param><embed src="http://www.youtube.com/v/p4cP2oy4ebE" type="application/x-shockwave-flash" wmode="transparent" width="425" height="350"></embed></object>

    So, now users may insert the <object>,<param> and <embed> tags, but is there ANY way that I can still allow users the usage of widgets but prevent the insertion of malicious code?
    How did other sites solve this issue?

    Thanks!


    please mark answers as 'Answered' and post back solutions when you figure stuff out that isnt in the post already.
Page 1 of 1 (1 items)
RSS Available

Contact | Advertise | Issue Management by Axosoft's OnTime | Running IIS7
All Rights Reserved. | Terms of Use | Trademarks | Privacy Statement
© 2009 Microsoft Corporation.