HTML Text encoding of web controls

  • Thread starter Thread starter Guogang
  • Start date Start date
G

Guogang

I find that the encoding of web control is inconsistent. Some controls will
do an HTML encoding on the text, some don't.

Say, I want to show the string "<script> alter("test") <script>". For a
"BoundColumn" used in DataGrid, I get an alert box instead of the string.
But for "TextBox" control, it is encoded correctly.

Is there a general rule, or documentation of which controls will do HTML
encoding automatically, which don't?

Thanks,
Guogang
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Label Control Doesn't HTML-Encode? 1
HTML Encoding in ASP .NET 2.0 Best Practices 1
Attributes added at runtime get HTML encoded 5
Page encoding and browsers (IE in particular) 9
HTML Text in a textarea tag 5
HTML encoding method? 1
Having a problem with CRLF in XML going to a Web service 0
preventing html encoding by server control 1

Back
Top