Strange ValidateInputIfRequiredByConfig error

asp.net asp.net-mvc asp.net-mvc-3
13,466

Solution 1

<pages validateRequest="false" />

does not work in MVC3.

1) You have to explicitly put [ValidateRequest(false)] on each controller or action

2) If you use .NET4 this is not sufficient as there is a "bug/feature" in .NET4 which prevent [ValidateInput(false)] to work. You have to also disable requestPathInvalidCharacters,validateRequest and requestFiltering by using requestValidationMode of 2.0 :

<httpRuntime requestValidationMode="2.0" requestPathInvalidCharacters="" />

Solution 2

I made three changes to solve this issue:

1) 

<system.web>
    <httpRuntime requestValidationMode="2.0" requestPathInvalidCharacters="" />
     </system.web>

2) 

<system.webServer>      
    <security>  <requestFiltering allowDoubleEscaping="true" /> </security>
    </system.webServer>

3) <pages validateRequest="false" />

Share:
13,466
Harish
Author by

Harish

Developer actually using C# and SQLAnywhere but with long experience with Delphi.

Updated on September 16, 2022

Comments

  • Harish
    Harish over 1 year

    I'm getting random exception caused by ValidateInputIfRequiredByConfig().

    I don't have exact message, since our server is pt-BR, so error message is translated.

    I know that this error can be thrown if user puts malicious code in input, ie example. But it's not case here.

    I'm getting this one, requesting some images. Below some info from elmah.

    HTTP_USER_AGENT:    GbPlugin
PATH_INFO:          /Content/images/BannerWelcome.jpg?1110311762734
PATH_TRANSLATED:    C:\inetpub\wwwroot\Content\images\BannerWelcome.jpg?1110311762734
REQUEST_METHOD:     GET
SCRIPT_NAME:        /Content/images/BannerWelcome.jpg?1110311762734

    Application is ASP.NET MVC 3, running on Windows 2008, IIS 7.5

    EDIT:

    Exception message in pt-BR:

    System.Web.HttpException
Um valor possivelmente perigoso Request.Path foi detectado no cliente (?).

System.Web.HttpException (0x80004005): Um valor possivelmente perigoso Request.Path foi detectado no cliente (?).
   em System.Web.HttpRequest.ValidateInputIfRequiredByConfig()
   em System.Web.HttpApplication.PipelineStepManager.ValidateHelper(HttpContext context)

    EDIT:

    Exception message in English: "A potentially dangerous value was detected from the client Request.Path"

    EDIT 2:

    I can't reproduce this error. As I know it is just in request to this image.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Razor - How to display html content in a div tag?
ASP.NET MVC3 The requested name is valid, but no data of the requested type was found
How to restrict/validate file upload filetypes server side on IIS
Folder browsing in ASP.net
ASP.Net MVC 3 Login and Windows Authentication
In Mvc 3 razor view what is the best way to conditionally render html based on Nulls in the model
Multiple selction in Dropdownlist of asp.net MVC 3
ASP.Net MVC Dynamic DropDownList - how to create one
MVC3 RC app deployed on IIS 6 giving "403 forbidden" error
How to Present a DataTable in an MVC3 Razor view