donderdag, december 29, 2005

 

quote problems

Using the freetextbox (www.freetextbox.com) i ran into some nasty quote problems. When i was a VB programmer i never had these problems and now with c# it went wrong, well, here some helping links. And yes, be aware of security issues when coding a CMS! (injections) (Joe Hummel has done some nice webcasts on that subject too)

http://channel9.msdn.com/wiki/default.aspx/Channel9.HowToPreventCrossSiteScripting

http://code.cside.com/3rdpage/us/unicode/converter.html

Table 1: Character representation

http://channel9.msdn.com/wiki/default.aspx/Channel9.HowToPreventCrossSiteScripting