Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
In my asp.net MVC appplication i have below line of code in default.cs page which is present by default and every ASP.NET MVC application should have this line.
HttpContext.Current.RewritePath(Request.ApplicationPath, false);
Now the issue is Ounce is reporting that is security issue saying CrossSiteScripting.Reflected ..
Please advice
It isn’t a security breach at all. All this code does is ensure that the current request is re-issued using MVC’s request handler, instead of ASP.NET’s. This code exists to handle cases where MVC fails to handle the request by default as a result of the server’s configuration.
It sounds to me like Ounce is reporting a false positive.