Skip to content

Commit

Permalink
Fix XSS vulnerability
Browse files Browse the repository at this point in the history
  • Loading branch information
evernat committed Oct 1, 2014
1 parent fb98646 commit 69b3ed2
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions javamelody-core/src/main/java/net/bull/javamelody/I18N.java
Original file line number Diff line number Diff line change
Expand Up @@ -133,8 +133,8 @@ static String getFormattedString(String key, Object... arguments) {
* @return String
*/
static String javascriptEncode(String text) {
return text.replace("\\", "\\\\").replace("\n", "\\n").replace("\"", "\\\"")
.replace("'", "\\'");
return text.replace("\\", "\\\\").replace("\n", "\\n").replace("\"", "%22")
.replace("'", "%27");
}

static String urlEncode(String text) {
Expand Down

0 comments on commit 69b3ed2

Please sign in to comment.