You are developing an ASP.NET MVC 2 application. A view contains a form that allows users to
submit their first name. You need to display the value that is submitted, and you must ensure that
your code avoids cross-site scripting. Which code segment should you use?
A.
<%: Model.FirstName%>
B.
<%= Model.FirstName %>
C.
<% Response.Write(Model.FirstName)%>
D.
<% Response.Write(HttpUtility.HtmlDecode( Model.FirstName))%>
Explanation:
CHAPTER 14 Creating Websites with ASP.NET MVC 2
Lesson 2: Creating Models, Views, and Controllers
Creating Views – Creating Strongly Typed Views (page 859)