why do we need ANTI XSS on email address field on a form if we have ASP.NET validator for email address and if the data goes straight into a database and is fetched from that field into the same textbox (i.e. if a script was entered then it will not be executed)???
Thanks in advance,
0 · ·