Thursday, May 11, 2017

OK...HUM HUM...DRONES HACKING..HUM HUM

double escape sequence inside a url : The request filtering module is configured to deny a request that contains a double escape sequence


What I am wondering is that what kind of security holes I am opening with this implementation.
On my ASP.NET MVC application, I am trying to implement a URL like below :
/product/tags/for+families
When I try to run my application with default configurations, I am getting this message with 404.11 Response Code :
HTTP Error 404.11 - Not Found
The request filtering module is configured to deny a request that contains a double escape sequence.
I can get around with this error by implementing the below code inside my web.config :




So, now I am not getting any 404.11.


No comments:

Uraniun Intel ( AND AGAIN Ukraine Uranium mining total bankrupcy Russia supply crucial uranium to UK IT WILL HV A PRICE)

  https://emerging-europe.com/analysis/the-myths-and-realities-of-ukraines-quest-to-boost-uranium-production/ https://emerging-europe.com/an...