-
Title
A potentially dangerous Request.Form value was detected from the client -
Description
When attempting to log into the Password Manager Helpdesk site, the user is unable to do so and the following error is seen in the Windows Event Viewer logs on the Password Manager server:
System.Web.HttpRequestValidationException (0x80004005): A potentially dangerous Request.Form value was detected from the client (Password="USERPASSWORD").
Note: There was an issue in Password Manager 5.9.3 that displayed the password in clear text this was resolved in Password Manager 5.9.5. -
Cause
The user password contains a combination of characters, which when submitted to Password Manager is misinterpreted as a potentially dangerous request. The characters causing the issue are special characters such as the bracket characters < and >.
-
Resolution
WORKAROUND
Reset the user's password and remove any special characters.
STATUS
This issue has been identified as a product Defect ID#: 115992. Waiting for a fix in a future release of Password Manager.
-
Change Request
115992