HyperLinkProperties.RemovePotentiallyDangerousNavigateUrl Property

Specifies whether to remove potentially dangerous navigate URLs within a hyperlink column.

Assembly: DevExpress.Web.v25.2.dll

Declaration

C#
VB.NET

[DefaultValue(DefaultBoolean.Default)]
public DefaultBoolean RemovePotentiallyDangerousNavigateUrl { get; set; }

<DefaultValue(DefaultBoolean.Default)>
Public Property RemovePotentiallyDangerousNavigateUrl As DefaultBoolean

Property Value

Type	Default	Description
DefaultBoolean	Default	One of the DefaultBoolean enumeration values.

Available values:

Name	Description	Return Value
True	The value is true.	`0`
False	The value is false.	`1`
Default	The value is specified by a global option or a higher-level object.	`2`

Remarks

Use the RemovePotentiallyDangerousNavigateUrl property to validate HyperlinkColumn values to prevent XSS vulnerability.

URL validation helps protect your application from cross-site scripting (XSS), server-side request forgery (SSRF), phishing, and similar URL-based attacks. For additional information, see Safe URL Validation.

If the RemovePotentiallyDangerousNavigateUrl property is set to Default, a hyperlink column’s navigate url vaidation depends on the BackwardCompatibilitySettings.RemovePotentiallyDangerousNavigateUrlDefaultValue property value.

Note

Note that grid-based controls validate only data source values used in a HyperlinkColumn and ignore the HyperLinkProperties.NavigateUrlFormatString property.

<dx:GridViewDataHyperLinkColumn FieldName="Link">
    <PropertiesHyperLinkEdit RemovePotentiallyDangerousNavigateUrl="True">
    </PropertiesHyperLinkEdit>
</dx:GridViewDataHyperLinkColumn>

Controls

FREE UTILITIES

Controls and Extensions

FREE UTILITIES

Controls

FREE UTILITIES

Controls and Extensions

FREE UTILITIES

HyperLinkProperties.RemovePotentiallyDangerousNavigateUrl Property

Declaration

Property Value

Remarks