当我将IE发送到以下位置时出现问题:http://fdvweb.mal/db/historikk/db_historikk_liste.asp?SQLfilter=SELECT TaKompHistorikk.*, TaKomponent.KompNummer, TaKomponent.KompNavn, TaKomponent.KompPlassering FROM TaKomponent RIGHT OUTER JOIN TaKompHistorikk ON [TaKomponent].[KompId]=[TaKompHistorikk].[KompHistorikkKompId] WHERE KompHistorikkSak = 'Servicerapport' AND (KompHistorikkStatusnummer <> '9999' OR IsNull(KompHistorikkStatusnummer) ) AND ((KompHistorikkStatusNavn <> 'OK' OR IsNull(KompHistorikkStatusNavn) ) OR ((KompHistorikkTittel <> '' OR KompHistorikkFritekst <> '') AND KompHistorikkTittel <> 'Kontrollert OK')) AND KompHistorikkDato >%3D %232/17/2010%23 ORDER BY KompNummer ASC(localhost,我编辑了hosts文件)。 db_historikk_liste.asp文件的源代码如下:
<html>
<head>
<title>Test</title>
</head>
<body>
<% Response.Write Request.QueryString("SQLfilter") %>
</body>
</html>
然而,IE给了我错误Internet Explorer has modified this page to help prevent cross-site scripting.
任何人都知道如何防止这种情况发生?
答案 0 :(得分:0)
尝试在HttpUtility.UrlEncode()
中包装查询字符串部分答案 1 :(得分:0)
解决方案是设置标题X-XSS-Protection: 0。
答案 2 :(得分:0)
require('es6-promise').polyfill();
require('isomorphic-fetch');
fetch('//offline-news-api.herokuapp.com/stories')
.then(function(response) {
if (response.status >= 400) {
throw new Error("Bad response from server");
}
return response.json();
})
.then(function(stories) {
console.log(stories);
});