.net mvc4 从客户端中检测到有潜在危险的 Request.Form 值

        [ValidateInput(false)] 即可， 网上说什么Web.Config 里面改，一点用都没有

 

        [HttpPost]
        [ActionName("Edit")]
        [ValidateInput(false)]  
        public ActionResult Edit(BlogInfo model)
        {
            model.UpdateTime = DateTime.Now;
            ef_Help.ModifyWithOutproNames<BlogInfo>(model, "CreateTime");
            // db.TagInfo.Where(X=>X.BlogID
            db.Database.ExecuteSqlCommand(string.Format(@"
            delete dbo.TagInfo where BlogID={0} delete dbo.Classification where BlogID ={1}", model.BlogID, model.BlogID));
            if (model.Tag != null)
            {
                foreach (var item in model.Tag.Split(','))
                {
                    db.TagInfo.Add(new TagInfo() { BlogID = model.BlogID, TagName = item });
                }
            }

            if (model.Classifications != null)
            {
                foreach (var item in model.Classifications.Split(','))
                {
                    db.Classification.Add(new Classification() { BlogID = model.BlogID, ClassificationName = item });
                }
            }

            db.SaveChanges();
            return View(model);
            //return Edit(model.BlogID);
            // Response.Write("1"); Response.End();

        }