Preventing CheckBoxList DataSource From Rendering HTML?
Oct 28, 2011
I am using a CheckBoxList in a VB.NET web project. The elements are pulled from a DataSource which is populated elsewhere in the system.
The problem is, if someone put in some raw HTML, the CheckBoxList seems to render it rather than assume plain text.
In this screenshot, for example, I entered <a href="http://www.google.com" onmouseover="alert('123');">hover here</a> so now whenever you hover over that CheckBox, an alert window pops up. This seems like a potential for XSS and I would like to disable it altogether.
I have tried googling and searching SO for someway to disable HTML rendering such as this, but haven't found anything relevant, so my apologies if this already has been answered elsewhere.
View 1 Replies
ADVERTISEMENT
Jun 23, 2010
i was wondering is there anyway to stop the error popup messages when i assign a datasource to a DataGridView (and there are errors). i was hoping i could wrap the assigning statement into a Try Catch and handle the errors myself instead of having them popup.
View 2 Replies
Aug 31, 2009
I have an ASP.NET Form (aspx). It uses VB as the codebehind. I want ALL of the VB to run and then the page to render BEFORE redirecting to the specified form. The problem is, is that I have Response.Redirect calls in the middle of the VB code (aspx.vb) and it seems to redirect before rendering the page. Is there any way around this? I need to have the page render so that some JavaScript on the client side (aspx) can run (it is for Google Analytics).
View 2 Replies
Aug 15, 2011
I have inherited a database that is moving to the web. Problem is that some of the string fields have html characters....
One example is....
"" without the quotes, IT WON'T SHOW UP IN HERE EITHER, trying something else. At any rate it has < and the > signs with text in the middle.
How can I escape any possible combination of html references.
SelectCommand="usp_getSingleStringData" SelectCommandType="StoredProcedure"
<SelectParameters>
<asp:SessionParameter Name="shrtText" SessionField="shrtText" Type="String" />
[Code]....
View 2 Replies
Jan 30, 2011
I use vb.net and windows form and sqlserver
I added Data Source(Microsoft SQL Server (SqlClient)) to my project. and now I need to change it to ODBC Data Source .
View 1 Replies
Jan 10, 2012
This may sound really stupid but I have to ask cause I'm not finding this answer anywhere.I have an application where the user will need to sign up for a new user account on the website [URL]..However when I am using Firefox's plug-in Firebug to view html I am getting something totally different than when I just right click on the site and view the page source.
What I am trying to do is to get the captcha from the website and display it in a picturebox on the application so the user can view the captcha, solve the captcha and then the app post is back to the service for a response.
Here is the source that I am getting using Firefox's Firebug to inspect the element:
<td>
<input type="hidden" value="Oo3Jo1I8bgzK68agMqo3s79ZZib2OkbK" name="iden">
<img class="capimage" src="/captcha/Oo3Jo1I8bgzK68agMqo3s79ZZib2OkbK.png" alt="i wonder if these things even work">
</td>
[Code]...
Why would the two be showing me two different versions of the HTML?
And how would you be able to grab that source to view in a picturebox using webclient?
View 2 Replies
Jun 20, 2009
Usage: Users create pretty HTML news letters in another app. They post the newsletter to the web, but they also want to set the contents of the HTML news letter file as the body of an email and send it using Application In Question. The users understand to use absolute link and image references when sending an E Newsletter. Environment:
AIQ is a VB.Net app deployed via ClickOnce. It is an intranet app; one can be sure MS Office 2003 and the interop 11 dlls are on the target machines.
Restrictions: MAPI is out. It mangles the HTML. Since it is a ClickOnce deployment, we can't register dlls (I think, correct me if I am wrong). Therefore CDO and COM is out (again, I may be wrong.... I would be happy to be proven so).
View 1 Replies
Mar 30, 2009
Im trying to use a CheckboxList Control to Store Yes and No and i noted there its a property on the control
"Selection Mode" One/MultiSelect/MultiSelect Extended
i set One expecting it to allow only one item being select at the same time but it doesnt work as expected, my question is there its another property to achieve this without having to code the event?.
i could do it by coding the event but, im tired of coding stuff that really isnt needed, since there are routines for that on VB.NET.
View 1 Replies
Apr 12, 2011
I am learning asp.net and needed to have a CheckBoxList which items will be initially selected if the are in a CSV string from a database.I have got it working although I just wondered if I have gone about it the best way as it seemed a little long winded?[code]
View 1 Replies
Sep 17, 2009
Using a checkboxlist not a simple checkbox I need to select 1 checkbox otherwise display a error message in an label once I submit the form. My checkboxlist does generate correctly now I just need to validate it
'check checkboxlist
For Each ckbox In checkBoxCropsFertilzed.Items
If ckbox.Selected > 1 Then
lblErrorMessage.Text = "too many selected"
End If
Next
View 1 Replies
May 10, 2012
I am using IIS 5.1 on server 2000. I have set the asp.net page for custom error in IIS which is directing to C:InetpubwwwrootCustom_ ErrorIIS_Error.aspx. Custom error page appears when user keyin wrong password for 3 times.When i access the error page directly (for testing) from my laptop using following URL then i can see the page text and the text box.
//192.168.0.10/Custom_Error/IIS_Error.aspx
But when user keyin wrong password for 3 times, system shows the custom error page with text only and doesn't show the asp.net controls.Also, is there any way to show the local path from where the user has been redirected to the custom error page? For an example; we have got 10 folders under website called TestWeb, so when the user is accessing folder number (3) called webtest3 and custom error page should show webtest3 on the page.Can i do it either on asp.net or on asp classic page?
View 2 Replies
Oct 25, 2010
I have this code
UPDATE OPENQUERY (db,'SELECT * FROM table WHERE ref = ''"+ Ref +"'' AND bookno = ''"+ Session("number") +"'' ')
How would I prevent SQL Injections on this?
[code].....
View 8 Replies
Dec 17, 2009
If I have a List(Of Guid) can I map those Guid's with a single Linq expression to a CheckboxList of values?
View 1 Replies
Jan 22, 2011
Pretty basic question, I have a checkboxlist inside of a wizard control. I need to collect the value of all items that are checked, as well as whatever value is inside of a textbox if "other" is checked, to insert into my database during the Wizard.FinishButtonClick event. How do I do this?
View 1 Replies
Feb 29, 2012
So, I'm running VB.net 3.5. I have a dynamic list of server names, and I want to put them in a CheckBoxList. The list is populated and, using that same list, I make a graph of the performance for each server listed. I want to be able to check and uncheck the checkboxes representing servers and, when I lick an update button, it'll create a new graph and graph only the servers that are still checked. I noticed that the page still loads before the button click is handled, so the CheckBoxList will repopulate itself before being able to read the current CheckBoxList. This is my load. And I populate my checkboxlist inside ShowView()
Protected Sub Page_Load(ByVal sender As Object, ByVal e As System.EventArgs) Handles Me.Load
If Not Me.IsPostBack Then
[Code]....
And I wanna try to preserve the checkboxlist values when I do an event handler for an update button.
Private Sub btnUpdateGraph_Click(sender As Object, e As System.EventArgs) Handles btnUpdateGraph.Click
'insert code
End Sub
View 2 Replies
Sep 16, 2011
How do I specify that I want two columns on a checkboxlist?Below is my code:
Protected Sub Page_Load(ByVal sender As Object, ByVal e As System.EventArgs) Handles Me.Load
If Not Page.IsPostBack Then
Dim di As New IO.DirectoryInfo("\bk00app0001Images")
Dim imageArray As IO.FileInfo() = di.GetFiles()
[code]....
View 1 Replies
Jul 22, 2009
how can i connect a checkboxlist with a database?
View 5 Replies
Oct 26, 2011
I have a list of options on my site that a user can select. What I want to do is provide functionality to limit the amount of content the user gets based on his selection in a CheckBoxList. Once he's selected what he wants, he'll click Save and his selection will be written to the database. The CheckBoxList is initially populated from the Modules table. This provides a list of modules that the user can select. When he clicks Save, the code needs to loop through this CheckBoxList and "pick out" the values for the CheckBoxes that were checked, disregarding the ones that weren't. The problem is that whether a CheckBox is checked or not, the debugger returns a False value for the CheckBoxList.Items(i).Selected property.
Here's my code:
Private Sub AddUpdateOrg(ByVal OrganizationName As String,
ByVal Action As String, Optional
ByVal Target As Integer = Nothing)
[Code] .....
Its possible that this behavior is the result of a postback from the save button. Upon further examination of the code, I've reconsidered the possibility that this issue is caused by a postback as the CheckBoxList is not bound on page load.
View 1 Replies
Oct 19, 2011
My below code pulls in 100 items into the checkboxlist all into one column. How can I modify the code so it will appear as two columns?
Protected Sub Page_Load(ByVal sender As Object, ByVal e As System.EventArgs) Handles Me.Load
If Not Page.IsPostBack Then
Dim di As New IO.DirectoryInfo(ImagePath)
Dim imageArray As IO.FileInfo() = di.GetFiles()
Dim image As IO.FileInfo
'list the names of all images in the specified directory
For Each image In imageArray.OrderBy(Function(i) i.Name)
CheckBoxList1.Items.Add(image.Name)
Next
End If
End Sub
View 2 Replies
Jan 18, 2011
connection here and declaration of variable
Dim i As Integer
Dim chk As CheckBoxList
chk = CType(Me.FindControl("chkBx1"), CheckBoxList)
For i = 0 To chk.Items.Count - 1
[Code]...
View 8 Replies
Jul 19, 2010
I have some checkboxlist like this:
<asp:CheckBoxList ID="G1" runat="server">
<asp:ListItem Value="Comunicações Unificadas" Text="Comunicações Unificadas - UCoIP"></asp:ListItem>
[code].....
View 1 Replies
Jul 7, 2009
I am attempting to set a range of checkmarks in a checkboxlist using vb.net code behind. I want the user to select a beginning value and an ending value and I want to fill in the range between them as having all been checked. Assuming the user checks the 10th and 15th checkboxlist items, I thought the following would display checkmarks for items 10 - 15[code]...
View 6 Replies
Apr 4, 2011
Here I have a code with a CheckedListBox and I want to display multiple information, name, country etc.. My code just displays its name. How to display more information, retrieved from a file. txt, in CheckedListBox ? I do not know what part of the code displays
Here is the function that returns data Public Overrides Function ToString() As String
Return _Name
Return _Old
Return _Country
End Function
View 2 Replies
Feb 16, 2011
Working on some UI stuff, but I am having a problem drawing 'Top rounded' rectangles when the two top corners are rounded. I have methods to draw all four corners rounded and bottom rounded rectangles and they render fine.
I have attempted the graphics methods in CreateTopRoundedRect() in a variety of different orders, drawing the other corner first, the bottom line first, the bottom line before the left line, etc. In this function you can see a diagonal line splitting the shape. If you were to switch the bottom and left lines only half of the shape would be filled.
[Code]...
View 3 Replies
Jul 5, 2011
I'm getting a strange problem with an ASP.NET web application that is in production. The problem is that pages intermittently don't render correctly (see screen shot below). It isn't one particular page in the application or one particular use that is having the problem.
View 1 Replies
Oct 8, 2009
I'm trying to bind UI controls to a business object exposed as a property on an ASP.NET page in a null-safe manner.Using the 'If' operator is null-safe, but results in compiler error:
Compiler Error Message: BC30201: Expression expected.Using 'IIf' succeeds, but isn't null-safe. I've tried both the render expression syntax ('<%= %>') binding expression syntax ('<%# %>'), but there was no difference.Can someone explain this inconsistency and perhaps provide an alternative?
Sample code:
This works:
<%=IIf(Me.Foo Is Nothing, "", Me.Foo.Id)%>
This throws the compiler error:
<%=If(Me.Foo Is Nothing, "", Me.Foo.Id)%>
View 6 Replies
Apr 16, 2009
i have looked all over and can not figure out how to use the firefox rendering engine in vb for my web browser?
View 5 Replies
Dec 29, 2009
Is there a way to prevent the VB .NET editor from saving the project whenever IT LIKES TO ? It very annoying ; it so stupid that it saves things that I don't want to and that I didn't ask it to do .If I add a form and then close the editor , when I open the project again , that form is still there though I DIDN'T save it !If I change a declaration from Friend to Public and close the editor without saving , then when I open again the project , my modified code remains modified , though I DID NOT save it !Today I realized that if I delete some controls of a form and then close the Editor , then when I reopen it , the controls are missing for good ! It saved that modification by itself !
View 3 Replies
Feb 26, 2012
I've completed an assignment that requires me to search through two listboxes for a particular number.If the number is found, the text on a label changes to a dollar amount, otherwise a message box is displayed letting the user know that the requested number cannot be found.It works well enough, searches through the listboxes, finds the number, and displays the message box when it can't be found.However, the message box shows repeatedly up to five times.After the user clicks "OK" on the fifth appearance, the program crashed and displays the follow message."Invalid Argument = Value of '5' is not valid for 'index'.Parameter name: index."I don't know what's causing this, or how to fix it.I do use the index as a counter at a portion of the program...but I'm not sure where I went wrong with it.[code]Also there are five items in the second listbox...probably has something to do with it.
View 2 Replies
Sep 20, 2010
I designed an application in vb.net 2005 while using Administrator account on vista.After compiling the application it start requesting for elevation during startup.I will like to prevent this, because the customer is complaning
View 2 Replies
