Forum Moderators: open
I only recently got administrative powers over some forums scripted in ASP. Although we allow users to apply E-tags (a dumbed-down version of HTML tags) to their posts, somehow the users are putting tags in their member names that disrupt the ASP. The member names are printed from ASP to HTML and they link to the member's profile, but somehow new users are also making names with scripted objects like images in them.
I realize I could restrict the use of certain characters in member names to prevent scripting, but before I do that I'd like to know what kind of tags these people are using. How can they script right through what should be text?
Thanks,
I appreciate all the help I've gotten at WW
Although I can control the parameters of the DB (limiting what is let into it), I can't actually see what's inside.
I ask you what tags might have been used, because although I know tags are being used and I know how to stop them, I can't see them, but I'd still like to have an idea as to what they are.
...apparently not. Is there an ASP forum here?
