ValidateInputAttribute, ValidateInput, httpRuntime requestValidationMode=2.0 in web.config (system.web) all do not fix, also the ValidateRequest=false

Question

0

Asked: May 17, 20262026-05-17T20:26:07+00:00 2026-05-17T20:26:07+00:00

ValidateInputAttribute, ValidateInput, httpRuntime requestValidationMode=2.0 in web.config (system.web) all do not fix, also the ValidateRequest=false

0

ValidateInputAttribute, ValidateInput, httpRuntime requestValidationMode=”2.0″ in web.config (system.web) all do not fix, also the “ValidateRequest=”false”” in my view. I’m using MVC 2, Visual Studio 2010, .NET 4.0, and I’m still getting the following error:

A potentially dangerous Request.Form value was detected from the client (Body="<p>test</p>").

This is with CKEditor. I’ve already looked at MVC2 application with Ckeditor "potentially dangerous Request.Form, but that might be old.

Please help!! Thanks.

UPDATE:

Soooo…. turns out you have to tweak the root web.config, and NOT the web.config that’s in your Views folder. sweet mercy. thanks everyone!

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-17T20:26:08+00:00

Editorial Team

2026-05-17T20:26:08+00:00Added an answer on May 17, 2026 at 8:26 pm

I have found that you need to go to the Action on the controller which is recieving the post data from the CKEditor enhanced form and on that action add the attribute like this:

[ValidateInput(false)]
public ActionResult UpdateText(string HtmlText)
{
  Repository.Save(HtmlText);  

  ...

  return View();
}

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

ValidateInputAttribute, ValidateInput, httpRuntime requestValidationMode=2.0 in web.config (system.web) all do not fix, also the ValidateRequest=false

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply