Last post Feb 04, 2014 04:47 AM by AidyF
Feb 04, 2014 03:16 AM|sultani.khalid.af|LINK
Feb 04, 2014 04:47 AM|AidyF|LINK
You can encrypt the queystring if you want, but it's a bit of a hassle and not always desirable. Just handle the input correctly given the appropriate mechanisms and you'll be fine. To protect against cross site scripting use things like Server.HtmlEncode
when writing user-given input to the page or into controls. For SQL injection always use the Parameters collection when writing ADO.net code.