I'm currently doing some encoding work to protect a site from XSS attacks. We've stuck a bunch of `<script>debugger;</script>` tags in the db. Dispite my best efforts, the strings I've encoded to stop the debugger getting hit (to prevent an XSS attack), are still getting hit in developer tools. Is there a chance that double encoding something could cause this to happen or is that not possible? Thanks in advance!

Member Avatar
Member Avatar
+0 forum 2

I have a web application I am trying to obfuscate portions of it, but use library mode so that all the public portions of the application should appear with names unchanged so it is accessible to the web. So I am trying to obfuscate some parts and not others. The sites I have visited appear to support it but I am getting an exception: [Click Here](https://www.preemptive.com/dotfuscator/pro/userguide/en/protection_library_mode.html) Here is my Dotfuscator.xml file which is on the root of the project. <?xml version="1.0" encoding="utf-8" standalone="no"?> <!DOCTYPE dotfuscator SYSTEM "http://www.preemptive.com/dotfuscator/dtd/dotfuscator_v1.1.dtd"> <dotfuscator version="1.1"> <propertylist> <property name="SourceDirectory" value="This Path Will Be Replaced By Visual Studio" …

Member Avatar
Member Avatar
+0 forum 3

Hello, There is a post request coming to my portal and I am fetching IP address from the post request on my portal landing page(INDEX view in MVC) and saving in DB table. below is the code to fetch IP address. string Device_IP = ""; if (!string.IsNullOrEmpty(Request.ServerVariables["HTTP_VIA"])) { // ' using proxy // ' Return real client IP. Device_IP = Convert.ToString(Request.ServerVariables["HTTP_X_FORWARDED_FOR"]); } else { // 'not using proxy or can't get the Client IP // 'While it can't get the Client IP, it will return proxy IP. Device_IP = Convert.ToString(Request.ServerVariables["REMOTE_ADDR"]); } It is fetching IP address on my side but …

Member Avatar
+0 forum 0

I'm creating Frontend for an application with Established database (am rewriting to be explicit and so there are some things I cannot change. I was looking at Default Register/Login that comes with MVC5 sample and found that its table have fields that are problematic to my app. Specifically, my users don't have Emails and app does not require one. But they rather have strings of username (PK in Existing User table). So I wanted to know if I can strip those unneeded field to match my table columns my table needs only UserName, Password, MobileNumber, LastLogin, and IsUserActive. Is there …

Member Avatar
Member Avatar
+0 forum 4

Hi Guys, I'm new to ASP.NET MVC, so please pardon me if I mentioned wrong terminology on my question I'm trying to create an application for a soccer related application. Right now I'm trying to design database/class structure for my application. However I run into a problem when I'm trying to define an appropriate class structure/business logic to represent a soccer match. On every match 2 teams commonly play, and each team has different attributes (e.g. numbers of red cards, yellow cards and goals it receives), My question is how could you or would you define that business rule in …

Member Avatar
+0 forum 0

Problem: Having problem to find a source solution (inherit code in view state) to display data from SokningPerformSearchViewModel and its generic list in view state. Questions/request: Need to display data from my viewmodel SokningPerformSearchViewModel and its generic list as a strongly typed (if possible)? This question is a follow-up from my previous question Display a view with [URL="http://stackoverflow.com/questions/4650801/display-a-view-with-many-to-many-relationship"]many to many relationship[/URL] // Fullmetalboy [CODE]namespace BokButik1.ViewModels { public class SokningPerformSearchViewModel { public List<BokSearchResultViewModel> Boksss { get; set; } } } namespace BokButik1.ViewModels { public class BokSearchResultViewModel { public List<Bok> Boks { get; set; } public List<Bok_Forfattare> Bok_Forfattares { get; set; } …

Member Avatar
+0 forum 0

We have created an MVC web application in asp.net 3.5, it runs absolutely fine locally but when we deploy it on godaddy hosting server (shared hosting), it shows an error which is related to trust level problem. We contacted godaddy support and they say, that we only support medium trust level application. So how to convert my application in medium trust level. Do I need to make changes to web.config file. It shows the following error : ------------------------------------------------------------ Security Exception Description: The application attempted to perform an operation not allowed by the security policy. To grant this application the required …

Member Avatar
Member Avatar
+0 forum 3

[CODE]<?xml version="1.0" encoding="utf-8" ?> <hibernate-mapping xmlns="urn:nhibernate-mapping-2.2" namespace="Samples.Controllers" schema="I_USER" assembly="Samples" > <sql-query name="PROCEDURE1" callable="true"> <!--<return class="empdetails.cs" />--> <return-scalar column="iusrfname" type="String" /> <return-scalar column="iusrlname" type="String" /> <return-scalar column="iusrlinname" type="String" /> <return-scalar column="iusremailid" type="String" /> <return-scalar column="iusrmobileno" type="String" /> <return-scalar column="iusrrmrks" type="String" /> <!--<return-scalar column="iusrcreated" type="DateTime" />--> call PROCEDURE1(:pr_userid,:iusrfname,:iusrlname,:iusrlinname,:iusremailid,:iusrmobileno,:iusrrmrks)<!--,:iusrcreated)--> </sql-query> </hibernate-mapping>[/CODE]

Member Avatar
+0 forum 0

I built an ajax chat in one of my mvc website. everything is working fine. I am using polling. At certain interval i am using $.post to get the messages from the db. But there is a problem. The message retrieved using $.post keeps on repeating. here is my javascript code and controller method. [code=javascript] var t; function GetMessages() { var LastMsgRec = $("#hdnLastMsgRec").val(); var RoomId = $("#hdnRoomId").val(); //Get all the messages associated with this roomId $.post("/Chat/GetMessages", { roomId: RoomId, lastRecMsg: LastMsgRec }, function(Data) { if (Data.Messages.length != 0) { $("#messagesCont").append(Data.Messages); if (Data.newUser.length != 0) $("#usersUl").append(Data.newUser); $("#messagesCont").attr({ scrollTop: $("#messagesCont").attr("scrollHeight") - …

Member Avatar
Member Avatar
+0 forum 1

[B]It's long but simple. I have only explained the problem in detail.[/B] After searching a lot i did not get any answers and finally i had to get back to you. Below i am explaining my problem in detail. It's too long, so please don't quit reading. I have explained my problem in simple language. I have been developing an asp.net mvc project. I am using standard ASP.NET roles and membership. Everything is working fine but the remember me functionality doesn't work at all. I am listing all the details of work. Hope you guys can help me out solve …

Member Avatar
Member Avatar
+0 forum 3

hi to all, I am trying to use MVC. I am using simple Login view. I just want to implement login form for my users. firstly I created database User and in that table 'login' with fields id, name, pass. I add values inn that. I create controller Search==> [code] public ActionResult search(FormCollection form) { //to check out I am checking with id field var id = Int32.Parse(form["name"]); ViewData.Model = u.login.First(m => m.id == id); return View(); } [/code] then i create view ==> [code] <%@ Page Title="" Language="C#" MasterPageFile="~/Views/Shared/Site.Master" Inherits="System.Web.Mvc.ViewPage" %> <asp:Content ID="Content1" ContentPlaceHolderID="TitleContent" runat="server"> search </asp:Content> <asp:Content ID="Content2" …

Member Avatar
Member Avatar
+0 forum 1

The End.