Improved security for HTML and script injection in form data mapping

In previous versions of WorkflowGen, HTML or scripts injected into an IN parameter were automatically interpreted by the browser, which could lead to potential security issues. As of WorkflowGen version 6.1, a new parameter called HtmlEncodeText has been implemented in WorkflowGen.My to enable or disable HTML injection (disabled by default).

To re-enable HTML injection, add the following code to the Form Designer in .NET mode:

protected override void OnPreLoad(EventArgs e)
  HtmlEncodeText = false; 

This will override the default HtmlEncodeText parameter value (true) in WorkflowGen.My. To enable HTML injection, set the parameter to false.