You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@tomcat.apache.org by ma...@apache.org on 2005/01/05 11:25:04 UTC
cvs commit: jakarta-tomcat-4.0/webapps/examples/jsp/snp snoop.jsp
markt 2005/01/05 02:25:04
Modified: webapps/examples/jsp/snp snoop.jsp
Log:
Fix possible XSS issue.
Revision Changes Path
1.3 +1 -1 jakarta-tomcat-4.0/webapps/examples/jsp/snp/snoop.jsp
Index: snoop.jsp
===================================================================
RCS file: /home/cvs/jakarta-tomcat-4.0/webapps/examples/jsp/snp/snoop.jsp,v
retrieving revision 1.2
retrieving revision 1.3
diff -u -r1.2 -r1.3
--- snoop.jsp 23 Apr 2002 15:17:26 -0000 1.2
+++ snoop.jsp 5 Jan 2005 10:25:04 -0000 1.3
@@ -7,7 +7,7 @@
<body bgcolor="white">
<h1> Request Information </h1>
<font size="4">
-JSP Request Method: <%= request.getMethod() %>
+JSP Request Method: <%= util.HTMLFilter.filter(request.getMethod()) %>
<br>
Request URI: <%= request.getRequestURI() %>
<br>
---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-dev-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-dev-help@jakarta.apache.org