New Post: AntiXSS 4.2 doesn't html encode on .NET 3.5
It seems that AntiXSS 4.2 htmlencode does not work on .NET 3.5.Did anyone face a similar problem and most importantly is there a solution to this?
View ArticleNew Post: AntiXSS 4.2.1 and MVC 3
Hi,all the problems is basically related to asp webforms or rich text editors?I only want to use Html.Encode or @Encoder.JavaScriptEncode of the library in an asp net MVC 3 online shop app.Are there...
View ArticleNew Post: Hash character encoded into %23
I am also having same issue. Is there any resolutions or workaround for this?
View ArticleNew Post: Hash character encoded into %23
Soon. Kinda of.The underlying problem lies within some asp.net controls using url encoding incorrectly. The ASP.NET folks have been trying to track them all down and that's still ongoing.The fix...
View ArticleNew Post: AntiXSS 4.2.1 and MVC 3
The current problems are with the Html Sanitizer.The encoding methods are perfectly fine and safe to use, so for your example usages you'll be ok.
View ArticleNew Post: AntiXSS 4.2 doesn't html encode on .NET 3.5
I'm not seeing this - can you reproduce it in a sample solution I can examine?
View ArticleNew Post: Update on the sanitizer.
I wanted to update you on the current state of the sanitizer. We're aware of the frustration you're having and I can only apologise. We're still exploring options - I know it's been six months but I've...
View ArticleReviewed: AntiXSS Library v4.2.1 (Jul 23, 2012)
Rated 1 Stars (out of 5) - GetSafeHtmlFragment functionality is broken.
View ArticleReviewed: AntiXSS Library v4.2.1 (Aug 01, 2012)
Rated 1 Stars (out of 5) - What the release notes don't tell you is that: (1) The old version of the sanitizer is completely vulnerable to XSS attacks in IE, due to a CSS parsing error, and (2) this...
View ArticleCommented Issue: GetSafeHtmlFragment replacing all html tags [17246]
When we updated our AntiXss library to 4.2.1 we noticed that our GetSafeHtmlFragment was no longer working. Is it required that we now whitelist any html attributes that we need with the newest release...
View ArticleCommented Issue: GetSafeHtmlFragment replacing all html tags [17246]
When we updated our AntiXss library to 4.2.1 we noticed that our GetSafeHtmlFragment was no longer working. Is it required that we now whitelist any html attributes that we need with the newest release...
View ArticleNew Post: Update on the sanitizer.
Hi,I recently heard AntiXSS library was included in ASP.NET 4.5 (VS 2012) / .NET 4.5.Does .NET 4.5 include the latest version of AntiXSS that is overly restrictive?Thanks,Brian
View ArticleReviewed: AntiXSS Library v4.2.1 (Aug 23, 2012)
Rated 1 Stars (out of 5) - Totally useless, destroyed our existing project and now I'm going to have to write a replacement and refactor the whole code base to replace GetSafeHtmlFragment with...
View ArticleNew Post: Where is the SecurityRuntimeEngine???
I'm trying to use the SRE module but I can't find the assembly. The installer does not create any other assembly apart from the AntiXSSLibrary.dll and the HtmlSanitizationLibrary.dll
View ArticleSource code checked in, #94877
Upgrade: New Version of LabDefaultTemplate.xaml. To upgrade your build definitions, please visit the following link: http://go.microsoft.com/fwlink/?LinkId=254563
View ArticleNew Post: AntiXSS library v4.2.1 with ASP.NET 3.5 or ASP.NET 4
I want to use AntiXSS library v4.2.1 in my ASP.NET 3.5 & ASP.NET 4 web applications. How do I start? Do I need to recompile my entire application after I copy the DLL in the bin folder? Do I need...
View ArticleNew Post: AntiXSS and Xml document
Our application accepts xml data through our WCF interfaces. This xml data is based on a variety of sources on a client's system, and transformed into a final inbound xml document for our...
View Article