Skip to content

issues Search Results · repo:OWASP/owasp-java-encoder language:Java

Filter by

55 results
 (103 ms)

55 results

inOWASP/owasp-java-encoder (press backspace or delete to remove)

The changes from PR #39 are not working anymore in the 1.3.0 release. All of the OSGi related entries are missing from the final MANIFEST.MF file. This means that the 1.3.0 version of the library can not ...
  • enapps-enorman
  • Opened 
    on Aug 18, 2024
  • #81

Error in version 1.3.0. Stacktrace: java.lang.NoSuchMethodError: java.nio.CharBuffer.limit(I)Ljava/nio/CharBuffer; at org.owasp.encoder.Encode$Buffer.encode(Encode.java:1325) at org.owasp.encoder.Encode.encode(Encode.java:1237) ...
  • osobolev
  • 4
  • Opened 
    on Aug 8, 2024
  • #79

I am building v1.2.3 bash-4.2$ javac -version javac 1.8.0_412 bash-4.2$ mvn -v Apache Maven 3.6.3 (cecedd343002696d0abb50b32b541b8a6ba2883f) Maven home: /scratch/apache-maven/apache-maven-3.6.3 mvn ...
  • janikgithub
  • 14
  • Opened 
    on Jul 26, 2024
  • #74

The current toXML method escapes for XML 1.0. Specifically the difference is that XML1.1 allows all characters [#x1-#x1F], whereas XML 1.0 only allows some of these. As an aside, the current XML encoder ...
  • paul-redwood
  • 1
  • Opened 
    on Jun 6, 2024
  • #73

Currently the Encode.forHtmlAttribute JavaDocs contain this JSP example: div %=Encode.forHtmlAttribute(unsafeData)% /div I guess this may be secure, but imho it does not reflect the intention of ...
  • meeque
  • 3
  • Opened 
    on Apr 17, 2024
  • #71

Hi, is it possible to combine the OWASP Sanitizer and the OWASP Encoder to not remove malicious code but to encode the problematic parts from a given string, so that f.e. a script tag will do no harm ...
  • bmscodespace
  • 5
  • Opened 
    on Jan 19, 2024
  • #69

Hi Jim Manico! I couldn t sanitize the vector % !-- % script alert(1); /script -- , using the methods available in encoder-1.2.3.jar , I would like some help to be able to identify if using the ESAPI ...
  • ricardonostrum
  • 4
  • Opened 
    on Jun 6, 2023
  • #68

Hello, I have tried using the core encoder in a project with java9+ modules but the automatic module name is missing from the jar manifest, version 1.2.3, (even though I saw some configuration in the ...
  • afloarea
  • 2
  • Opened 
    on Apr 1, 2023
  • #66

We are currently migrating our Spring Boot application to version 3.0. In Spring Boot 3.0 they ve migrated all dependencies from Java EE to Jakarta EE APIs. Now Jakarta EE 10 dependencies are used. We ...
  • mlemmens
  • 5
  • Opened 
    on Feb 20, 2023
  • #64

Compilation breaks with org.owasp.esapi:esapi:2.5.1.0 because org.owasp.encoder.esapi.ESAPIEncoder.Impl does not implement the new methods - org.owasp.encoder.esapi.ESAPIEncoder.Impl#decodeFromJSON ...
  • ghost
  • 6
  • Opened 
    on Nov 30, 2022
  • #63
Issue origami icon

Learn how you can use GitHub Issues to plan and track your work.

Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub Issues
ProTip! 
Press the
/
key to activate the search input again and adjust your query.
Issue origami icon

Learn how you can use GitHub Issues to plan and track your work.

Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub Issues
ProTip! 
Press the
/
key to activate the search input again and adjust your query.
Issue search results · GitHub