Today I came across one of the more weird issue in the production environment.
The site is developed in sharepoint 2010, and we have a search box in the page.
When user try to enter some of the javascript code ex: <script>alert('hi')</script> in the search text box, our site was broking(in the sence styles) all the times.
By default sharepoint will take care of Anti cross side scripting for the all the out of the box the control(specially with search).
But in our case it was breaking. After doing an investigation I came to know some where we are writing the text query in the page(As a title we are using this).
There we are not doing AntiXss for the that. After fixing this our page rendered as expected.
To get more information about AntiXss please follow this post.
http://ha.ckers.org/xss.html
