use*_*476 4 c# asp.net exception
我实现了我的网站,突然发现了一个错误,global.asax application_error其中包含以下内容:
Error Caught in Application_Error event Error in: http://www.mydomain.com/styles/data:image/gif;base64,R0lGODlhAQABAAD/ACwAAAAAAQABAAACADs= Error Message:A potentially dangerous Request.Path value was detected from the client (:).
SOURCE: System.Web FORM: QUERYSTRING: TARGETSITE: Void ValidateInputIfRequiredByConfig() STACKTRACE: at
System.Web.HttpRequest.ValidateInputIfRequiredByConfig()
at System.Web.HttpApplication.ValidateRequestExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute() at
System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)
我知道这是图像的数据,但我不知道如何以及为什么会发生这种情况.
有任何想法吗?
人权委员会.
这是一个非法的URL:
http://www.mydomain.com/styles/data:image/gif;base64,R0lGODlhAQABAAD/ACwAAAAAAQABAAACADs
冒号是一个特殊字符(有意义的协议分隔符,端口分隔符或密码分隔符)
正如Hasan所提到的,您可以关闭此验证.但事实上,你应该避免像这样的URL完全无效.而是对URL进行URL编码("数据"之后的部分).