We are using Ajaxcontroltoolkit.dll In our application. We are mandated by our organization to scan our code in Veracode Site for Security Scan. While running the scan we got __"Cross site scripting flaws in AjaxControlToolKit.dll"__ Please advise to fix/overcome these flaws.
__Issues Details:__
Cross-Site Scripting - Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)
Module: AjaxControlToolkit.dll (__Product Version 4.1.404122 for Visual studio 2010____)
1) In ajaxcontroltoolkit_dll.
File Name : AjaxControlToolkit.Rating
Method Name : RenderContents
2) In ajaxcontroltoolkit_dll.
File Name : AjaxControlToolkit.HTMLEditor.ToolbarButton.ImageButton
Method Name: AttributesToRender
__Issues Details:__
Cross-Site Scripting - Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)
Module: AjaxControlToolkit.dll (__Product Version 4.1.404122 for Visual studio 2010____)
1) In ajaxcontroltoolkit_dll.
File Name : AjaxControlToolkit.Rating
Method Name : RenderContents
2) In ajaxcontroltoolkit_dll.
File Name : AjaxControlToolkit.HTMLEditor.ToolbarButton.ImageButton
Method Name: AttributesToRender