New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

encodeForHTMLAttribute escapes the forward slash #301

Closed

meg23 opened this issue Nov 13, 2014 · 1 comment

Labels

bug imported Priority-Medium

meg23 commented Nov 13, 2014

From julian.r...@googlemail.com on March 04, 2013 11:19:00

Why?

Original issue: http://code.google.com/p/owasp-esapi-java/issues/detail?id=295

meg23 added bug imported Priority-Medium labels

Collaborator

xeno6696 commented Jul 26, 2017

To prevent injections predicated on prematurely closing a tag.

</span><script>alert(1);</script>

xeno6696 closed this as completed

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment