Browse by Tags

All Tags » Security (RSS)

A small but crucial point about App_Start folder by imran_ku07

As we know that IIS reject requests which contain folder started with App_ (specifically App_code, App_GlobalResources, App_LocalResources, App_WebReferences, App_Data, App_Browsers folders). Lot of developers put some important files here so that only...

Security Issue in ASP.NET MVC3 JsonValueProviderFactory by imran_ku07

Introduction: Model binding(a mechanism for mapping action method parameters with request data), is one of the most popular feature of ASP.NET MVC. The default model binder get its data from different value providers. In ASP.NET MVC 2, by default, these...

Understanding Request Validation in ASP.NET MVC 3 by imran_ku07

Introduction: A fact that you must always remember " never ever trust user inputs" . An application that trusts user inputs may be easily vulnerable to XSS, XSRF, SQL Injection, etc attacks. XSS and XSRF are very dangerous attacks. So to mitigate these...

Bug Fixes and Changes in ASP.NET MVC 3 Beta by imran_ku07

Update: This article is outdated. Please read this post for the latest new features. Introduction: Few days ago when ASP.NET MVC team released ASP.NET MVC 3 Beta. This beta release includes some new features, some changes, some improvements and bug fixes...

Globally Handling Request Validation In ASP.NET MVC by imran_ku07

Introduction: Cross Site Scripting(XSS) and Cross-Site Request Forgery (CSRF) attacks are one of dangerous attacks on web. They are among the most famous security issues affecting web applications. OWASP regards XSS is the number one security issue on...
Filed under: , , ,

Understanding 400 Bad Request Exception by imran_ku07

Introduction: Why I am getting this exception? What is the cause of this error. Developers are always curious to know the root cause of an exception, even though they found the solution from elsewhere. So what is the reason of this exception (400 Bad...
Filed under: , , , ,
More Posts