A potentially dangerous Request.Form value was detected from the client

Question

0.00/5 (No votes)

See more:

Dear Professionals,

We are using an ASP.net 2.0 Web Service in which there are some SOAP function calls and these remote functions return html strings which contain '>', '<' characters and many other special characters.

The Web service has been extensively used for many years now and only lately we get the "A potentially dangerous Request.Form value was detected from the client" exception.

We have googled and figured out the reason and also the proposed solutions that we need to put the validdateRequest='false' inside the Web.config, or include this in the @Page directive.

We tried the Web.config solution and it never worked out for us. As for the @Page directive, since this is an .asmx file we are not sure where to include this.

Please Help us with a solution.

Thanks in Advance.

Posted 24-Apr-14 23:42pm

Priya-Kiko

Add a Solution

Comments

Priya-Kiko 25-Apr-14 6:21am

We tried it and got this error while building :

Unrecognized attribute 'requestValidationMode'. Note that attribute names are case-sensitive.

Tadit Dash (ତଡିତ୍ କୁମାର ଦାଶ) 25-Apr-14 8:17am

Try to encode and decode the HTML strings while sending and receiving respectively.

Priya-Kiko 26-Apr-14 6:54am

Thanks a million !

It worked very well.

Tadit Dash (ତଡିତ୍ କୁମାର ଦାଶ) 26-Apr-14 13:54pm

Most welcome. :)

Please accept the answer I have added.

Thanks,
Tadit

Priya-Kiko 28-Apr-14 2:41am

Thanks Tadit, I have accepted this as solution gladly. :)

Tadit Dash (ତଡିତ୍ କୁମାର ଦାଶ) 28-Apr-14 2:50am

Thank a lot Priya. :)

1 solution

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

Tadit Dash (ତଡିତ୍ କୁମାର ଦାଶ) · Accepted Answer · 2014-04-26T07:54:00

Solution 2

Try to encode and decode the HTML strings while sending and receiving respectively.

Posted 26-Apr-14 7:54am

Tadit Dash (ତଡିତ୍ କୁମାର ଦାଶ)