How can an Email Address textbox have xss attack?

why do we need ANTI XSS on email address field on a form if we have ASP.NET validator for email address and if the data goes straight into a database and is fetched from that field into the same textbox (i.e. if a script was entered then it will not be executed)???
Please help.
Thanks in advance,
Sign In or Register to comment.

Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!