Last post May 08, 2020 09:39 PM by mgebhard
May 08, 2020 08:25 PM|bhbooton|LINK
I have been tasked with making a website more secure. It is a fundraising application that is set up like ebay with employees buying and selling their baked goods. The problem is that it has a large asp:textbox with the textmode attribute set to multiline
secure. Give me some basic steps so that my users can insert their links and special characters into the textbox while preventing code injection.
May 08, 2020 09:39 PM|mgebhard|LINK
Rather than allowing the user to enter HTML like....
provide the user an interface where the user can add a link by entering the href and Link text separately.
If the above solution is not good enough then you need to realize that this is a rather complex feature. Do an internet search for libraries that specialize in sanitizing user input. Building your own is tough.