lundi 30 mai 2016

Fortify (SCA) complaining for Cross-Site Scripting

I have a GridView on web form having Columns bound like

 Text='<%# getName(Eval("Table_Name")) %>'

Fortify Source Code Analyzer complains an vulnerability of Cross-Site Scripting on this line. How to fix it or is it ignore-able?

Does Text='<%# AntiXssEncoder.HTMLEncode(Eval("Participants")) %> help as mentioned in another post?

Thanks

Aucun commentaire:

Enregistrer un commentaire