Sep 18, 2009 at 10:30 AM
Edited Sep 18, 2009 at 10:31 AM

Hi, i tried the following:

Microsoft.Security.Application.AntiXss.GetSafeHtmlFragment("<img src=\"/images/test.gif\" class=\"test\" />")

However this gave me the following output:

<img src="/images/test.gif" class="x_test">

Notice it has 2 issues:

  1. The tag is not closed correctly (should end with />)
  2. The class name has been pre-fixed with x_

I'll assume this is a limitation in this version.  Do you know when this will be corrected as i won't be able to use it until then.  Thanks

Sep 21, 2009 at 5:36 PM

Unfortunately both are currently not supported. We will look into this in our next version.


Oct 26, 2009 at 4:14 PM


When will the next version be available? Especially the 2. (x_ prefix) is a showstopper when using WYSIWYG editors.

thanks, Marcel