I recently had our application scanned by Veracode and every Telerik control used had a XSS flaw where script could be injected in the ClientState of all controls and successfully executed after the control rendered. Am I missing some property to scrub the ClientState or is this a true flaw? Please advise.

Example:
Injected "><script>alert(String.fromCharCode(104,78,108,53,56,82,111,83))</script>  into RadMultiPage1_ClientState and got an alert.
Expected that the injected script would be removed.

Hi we have a dataset generated from SQL and within this dataset we also have an extra table where its the source of a lookup.

We have a grid operating in batchmode (inline editing) which we create programmatically. We want to have a dropdowncolumn which is bound to that extra table.

Please dont tell me that to implement this we need to implement templates its a simple requirement .

Hi everybody,

   I have a question about how I can compare the current time against the schedule appointment. I set up the appointment with the Start date time (12-01-2016 7:00 PM), End date time (12-01-2016 7:15 PM), and the Recurrence Rule(Recur 1 time every week on Thursday). When the time comes, I'll display my image. For instance, if the current time is 12-01-2016 5:00 PM, my application does not show the image, and it does show up when the time is 7:01 PM. What is the best way to compare the current time against the appointment. I attach my screenshot here as well.

   We purchased UI for ASP.NET AJAX from Telerik. If you need our license number, I can ask our IT department. Thank you.

   D.

Hello,

I use a rad Gantt control in which I try to populate a custom task field through a custom database provider. Unfortunalty, I did not succeed to make it work. I use the latest version of telerik UI for ASP.NET Ajax (2016.3.1027.35).

The provided examples does not compile with this version. Could you please provide me an example working with this version.

Thanks a lot.

Hi all,

 

I've managed to add a filter on a dropdown column in my grid, which allows me to easily look for the correct data in my list. But the issue here is that I cannot filter the list with the filter option "Contains". It always returns me the "EqualTo" values. I need it to work with Contains.

Here is my code:

 

Thanks in advance for your help

Requirements
Telerik Product and Version	Telerik.Web.Spreadsheet.dll - Version 2016.3.1024.40 Telerik.Windows.Documents.Core.dll - Version 2016.3.1021.40
Supported Browsers and Platforms	IE
Components/Widgets used (JS frameworks, etc.)	VS2010 - Framework4.0

PROJECT DESCRIPTION 
I am working on a web application that provides spreadsheet functionalities. We were using Office Web Components before and now trying to replace the same with Telerik Rad Spreadsheet. As per the guidance in this url http://docs.telerik.com/devtools/aspnet-ajax/controls/spreadsheet/getting-started.html#creating-a-simple-radspreadsheet I tried to add references. But the DLL versions are different between Spreadsheet and Documents.Core.dll. So this is erroring out. Can you please help on this.

I have a radscheuler with RowHeight set to 205px. In timeline view , when I have a lot of appointment at a same time, I have the following error : 

1: Error Description:Specified argument was out of the range of valid values.
Parameter name: value
1: Source:System.Web
1: Stack Trace:   at System.Web.UI.WebControls.Unit..ctor(Double value, UnitType type)
1:    at Telerik.Web.UI.Scheduler.Views.TimelineAllDayTable.CreateAllDayCells(WebControl row, Dictionary`2 appointmentControls)
1:    at Telerik.Web.UI.Scheduler.Views.SchedulerAllDayTable.AddRow(IList`1 allDaySlots, Dictionary`2 appointmentControls)
1:    at Telerik.Web.UI.Scheduler.Views.Timeline.RendererBase.CreateInnerContentTable(Control container, IList`1 allTimeLineSlots)
1:    at Telerik.Web.UI.Scheduler.Views.Timeline.RendererBase.CreateInnerContentTable(Control container, IList`1 intervalSlots, Int32 minimumRowCount)
1:    at Telerik.Web.UI.Scheduler.Views.Timeline.Renderer.GetInnerContent()
1:    at Telerik.Web.UI.Scheduler.Views.Timeline.Renderer.GetContent()
1:    at Telerik.Web.UI.RadScheduler.CreateContent()
1:    at Telerik.Web.UI.RadScheduler.CreateChildControls(Boolean bindFromDataSource)
1:    at Telerik.Web.UI.RadScheduler.CreateChildControls()
1:    at System.Web.UI.Control.EnsureChildControls()
1:    at Telerik.Web.UI.RadScheduler.OnPreRender(EventArgs e)
1:    at System.Web.UI.Control.PreRenderRecursiveInternal()
1:    at System.Web.UI.Control.PreRenderRecursiveInternal()
1:    at System.Web.UI.Control.PreRenderRecursiveInternal()
1:    at System.Web.UI.Control.PreRenderRecursiveInternal()
1:    at System.Web.UI.Control.PreRenderRecursiveInternal()
1:    at System.Web.UI.Control.PreRenderRecursiveInternal()
1:    at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
1: Target Site:Void .ctor(Double, System.Web.UI.WebControls.UnitType)
----------------------------------------------

I already had a similar issue in my code and it was because max Unit type size is 32767 pixels. 

Tom 

Hi,

We have a requirement to always show the checkbox even if the node is disabled. We can achieve the functionality in JavaScript by handling and then canceling the event, but need a visual representation too. We've tried overriding the background image of the checkbox without success. Is there a way to do this? We are using version 2013.3.1234.35.

Thanks,

Dave

I use RadGrid extensively in my application and use the UniqueName property as well. I have several columns with UniqueName property that have blank spaces in it(e.g. uniquename="Order ID"). Until now I was using the 2011 Q1 release of ASP.NET AJAX controls and  
it was working fine.

I recently upgraded to 2012 Q1 (SP1) release and my app is breaking now every where I have UniqueName property defined with blank spaces. Is it something new introduced in this release? Is there any work around so that I don't have to make changes everywhere I am using the uniquename property in my application? 

Manjeet

We are currently using 2015.2.826.40 and I know that is not the latest version but if we upgrade will this resolve the issues?