I'm getting the above exception when I'm trying to submit a form in ASP.NET.
This post was really helpful but even after setting ValidateRequest="false" I get this error only for "&#" combination. This specific combination is required since we are using Norwegian characters.
And I have set httpRuntime requestValidationMode="2.0" in web.config as well.
Ok, from the comments, I make it also as an answer.
Place the ValidateRequest="false" on the web.config to prevent the case that its hit on a forgotten page with out this declaration.
<pages validateRequest="false" ... >
来源:https://stackoverflow.com/questions/10717703/a-potentially-dangerous-request-form-value-was-detected-from-the-client