发表新帖
发表新帖

Is there a risk in using @Html.Raw?

后端 未结
关注
3 657
梦毁少年i
梦毁少年i 2021-01-18 11:18

Is there a risk in using @Html.Raw? It seems to me there shouldn\'t be. If there is a risk then wouldn\'t that risk already exist regardless of using @Htm

3条回答
  • 慢半拍i
    慢半拍i (楼主)
    2021-01-18 11:43

    @Html.Raw will allow executing any script that is on the value to display. If you want to prevent that you need to use @Html.AttributeEncode

    0 讨论(0)
 看不清?
提交回复
热议问题