Skip Navigation LinksHome / Community & Support / Developer Productivity Tools Forums / ASP.NET AJAX > Input > Paste invalid data into RadNumericTextBox

Not answered Paste invalid data into RadNumericTextBox

Feed from this thread
  • Phil Master avatar

    Posted on Feb 6, 2012 (permalink)

    Hi:

    I was testing a RadNumericTextBox.  It is somewhat declared as follows:
    <telerik:RadNumericTextBox ID="quantityTextBox" Runat="server" MaxLength="4"
        MaxValue="9999" MinValue="1" Text='<%# Bind("Quantity") %>' Width="60px"
        OnTextChanged="quantityTextBox_TextChanged" AutoPostBack="True"
        />
    I was testing for XSS (cross site scripting) and was able to paste <scr into the textbox.  I was not able to type the value, but surprisingly, I was able to paste non-numeric data.

    Phil

    Reply

  • Kevin Master avatar

    Posted on Feb 7, 2012 (permalink)

    Hello Phil,

    It's true that you can paste the value in, but after the control loses focus, it gets removed. At least that is how it works on the demo site.

    Reply

  • Phil Master avatar

    Posted on Feb 7, 2012 (permalink)

    Hi:

    I have an OnChange event on the text-box and it is processed.  It is not the expected behavior.  Not good.

    Phil

    Reply

  • Marianne Seggerman Master avatar

    Posted on Feb 8, 2012 (permalink)

    is there an OnError client event?  you can set_value('') at that point

    Reply

Back to Top

Skip Navigation LinksHome / Community & Support / Developer Productivity Tools Forums / ASP.NET AJAX > Input > Paste invalid data into RadNumericTextBox
Related resources for "Paste invalid data into RadNumericTextBox"

ASP.NET Input Features  |  Documentation  |  Demos  |  Telerik TV  |  Self-Paced Trainer  |  Step-by-step Tutorial  ]