Note:
- Using the Server.HtmlEncode utility method to sanitize the user input. This prevents users from injecting Javascript into our View with a link like /Store/Browse?Genre=<script>window.location=’http://biboyatienza.blogspot.com/’</script>.
No comments:
Post a Comment