jquery - A potentially dangerous Request.Path value was detected from the client (&) on button click -

-

i have redirect controller action on button click, i'm getting error

 `a potentially dangerous request.path value detected client (&).`

here code:

views/_layout.cshtml

    <body>         <div id="wrapper">             <div id="tab1">                 <div class="tab2">                     <div id="test2" class="officebar">                         <ul>                             <li class="current"><a href="#" rel="home">main</a>                                 <ul>    // ..other button code..                           <li><span>logout</span>                             <div class="button">                              <a href="#" id="logout"  title="logout">                                                 <div class="logout">                                                 </div>                                                 logout</a>                                         </div>                                        </li></ul></li>   <script>      $("#logout").click("click", function () {                     //window.refresh("./account/logoutview");                    // "@url.action("logoutview", "account")";                     window.location = "@url.action("logoutview", "account")";                  window.location.href = "@url.action("logoutview", "account")";                  });   </script>

this logoutview location:

views/account/logoutview

this output error, please : enter image description here

edit3:

i can able hit action method if use 

<li> <div><a class="button" href="@url.action("logoutview", "account")"  title="logout">logout</a>  </div></li>

but need use above mentioned design .this problem.

solution:i tried window.location.href = 'account/logoutview'; instead of window.location.href = "@url.action("logoutview", "account")"; thankyou user2110309, pkkg, mmohamad bataineh time :)

try putting in web.config

<system.web>     <httpruntime requestpathinvalidcharacters="" requestvalidationmode="2.0" />     <pages validaterequest="false" /> </system.web>

this may open risks in application if you're not escaping data. recommend replacing & sign character _ .

other that, try putting [validateinput(false)] on top of action. said not working may putting on wrong action.


Comments

Post a Comment

Popular posts from this blog

design - Custom Styling Qt Quick Controls -

-
Image
i have custom design qt quick controls. example, change background colour of tool bar, since hate default design. how can that? in qt quick controls, there limited styling available via qt quick control styles items, buttonstyle , checkboxstyle , etc. at moment, other styles require delving qt sources , messing internal details. here complete example of how 1 might modify toolbar's style. main.qml import qtquick 2.1 import qtquick.layouts 1.0 import qtquick.controls 1.0 applicationwindow { toolbar: toolbar { id: toolbar component.oncompleted: toolbar.data[0].item.children = [newrectangle]; property item _newrectangle: rectangle { // rectangle within toolbarstyle's panel // gleaned from: // http://qt.gitorious.org/qt/qtquickcontrols/source/ // c304d741a27b5822a35d1fb83f8f5e65719907ce:src/styles/base/toolbarstyle.qml id: newrectangle anchors.fill: parent...
Read more

Unable to remove the www from url on https using .htaccess -

-
i want remove www site url. ie. https://www.domainname.com.au https://domainname.com.au . i have tried various .htacces code nothing work me. here present code remove www http not work https. rewriteengine on rewritebase / rewritecond %{http_host} ^www\.(.*)$ [nc] rewriterule ^/(.*)$ http://%1/$1 [r=301,l] rewritecond %{https} off rewriterule ^(.*)$ https://domainname.com.au/$1 [r=301,l] rewriterule ^code-of-conducts/(.*)/$ code-of-conducts.php?type=$1 rewriterule ^parents/post-a-job/(.*)/edit/$ parents/post-a-job.php?action=edit&id=$1 rewriterule ^parents/post-a-job/(.*)/$ parents/post-a-job.php?job_type=$1 rewriterule ^parents/open-jobs/(.*)/delete/$ parents/open-jobs.php?action=delete&id=$1 rewriterule ^parent-profile/(.*)/$ parent-profile.php?id=$1 rewriterule ^parents/job-details/(.*)$ parents/job-details.php?applied_id=$1 rewriterule ^sitterprofile/(.*)/$ sitterprofile.php?id=$1 rewriterule ^sitter/job-board/state/(.*)/page/(.*)/$ sitter/job-board.ph...
Read more