[opencms-dev] Problem security with HTML Injection in Implementation Project in OpenCms...
Deiverson Silveira
deiverson at solutioncms.com
Fri May 20 20:26:08 CEST 2011
Hi List,
There is some setting in opencms to set the escapehtml false?
I do not want to deal in all places like this (very hard work):
org.apache.commons.lang.StringEscapeUtils.escapeHtml(request.getParameter(myParameter));
Thank you in advance any help,
Deiverson Silveira
PS: Exemple in config Tomcat, catalina.properties, acceot double " :
org.apache.jasper.compiler.Parser.STRICT_QUOTE_ESCAPING=false
PS2: I use JBoss 4.2.1 and 4.2.2 =|
--
*
www.solutioncms.com
The Brazilian
Official Provider OpenCms
*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://webmail.opencms.org/pipermail/opencms-dev/attachments/20110520/357aaf78/attachment.htm>
More information about the opencms-dev
mailing list