Dim reg As New Regex("^[a-zA-Z]{1,40}$") If Reg.IsMatch(tbName.Text, "^[a-zA-Z]{1,40}$") Then Response.Write("Valid input"); Else Response.Write("Invalid input"); End If
[ the opening square bracket \ the backslash ^ the caret $ the dollar sign . the period or dot | the vertical bar or pipe symbol ? the question mark * the asterisk or star + the plus sign ( the opening round bracket ) the closing round bracket
< > %3c and %3e (used in XSS) : %3a (used in XSS with Javascript: ) %27 , - %2D%2D, ; %3B (used in SQL injections) ../ %2E%2E%2F (used in directory transversal, file upload) ` %60 (used in command injections) /0 null) %00 (used in NULL strings)
A potentially dangerous Request.Form value was detected from the client
<%@ Page ValidateRequest="false" %>
<pages ValidateRequest="false" />
(Source: Curphey et al., 2003)
(Source: Stuttard & Pinto, 2008)