Question
When I try to create or edit an item, why do I receive the following error:
Invalid String
A value you have entered is not permitted: [string]. Please enter a different value and try again.
Answer
In order to prevent against possible cross-site scripting attacks, some fields prevent the use of HTML code and/or javascript special words. A regular expression pattern is used to check for the values, which include, but are not limited to:
- onmouseover
- alert(
- alert%28
- onmouseout
- onmouseup
- onfocus
- onblur
- onclick
- ondblclick
- onmousedown
- tosource
- valueof
- tostring
- tolocalstring
- concat
- charat
- substr
- substring
- valueof
- every(
- every%28
- exec(
- exec%28