vb.net - How Can I Fix Reflected XSS Clients in Asp.Net -
how can fix reflected xss client problem on asp.net? can me?
the problem below:
reflected xss client
method :
row:563
private shared function bindsitemenu(tsql string) data.datatable .... 563. drow.item("sortby") = dt1.rows(i).item("sortby").tostring 564. dtall.rows.add(drow) .... 569. return dtall
method :
public shared function frontsitemenuforsmap(byval siteid long) data.datatable .... 529. return bindsitemenu(tsql)
method :
protected sub sitemap(sitid long) .... 27. dim dt data.datatable = sitemenuobj.frontsitemenuforsmap(sitid) .... 29. setnodes(dt, sitid, 0, 0, "")
method :
row:77
protected sub setnodes(byval dttree data.datatable, byval siteid long,byval parentid long, byval level integer, byval treenumber string) .... 33. protected sub setnodes(byval dttree data.datatable, byval siteid long, byval parentid long, byval level integer, byval treenumber string) .... 36. rows = dttree.select(filterexpr) 37. if rows.getupperbound(0) >= 0 .... 47. each row in rows 48. tmpparentid = row.item("parentid").tostring 49. tmpfdefaultlink = row.item("fdefaultlink").tostring 50. tmpmenutitle = row.item("menutitle").tostring 51. tmpmenuid = row.item("menuid").tostring 52. tmpsiteid = row.item("siteid").tostring 53. tmpurl = row.item("url").tostring .... 71. url = tmpurl .... 77. litf.text = "<li " & css & "><a href=""" & url & """ title=""" & tmpmenutitle & title & """>" & tmpnumber & tmpcount & "." & tmpmenutitle & "</a><ol>"
thanks everyone's help!
Comments
Post a Comment