-
- Downloads
Console:
XSSFilter patch from str4d: XSSFilter and XSSRequestWrapper were from http://ricardozuasti.com/2012/stronger-anti-cross-site-scripting-xss-filter-for-java-web-apps/ No provided license, but it is clearly intended for public consumption. But most of it is boilerplate provided by the Servlet Filter system. In fact, now that I have stripped out his JS-specific patterns and replaced it with the whitelist, it is effectively identical to what I would have written from scratch.
Showing
- apps/jetty/java/src/net/i2p/servlet/filters/XSSFilter.java 27 additions, 0 deletionsapps/jetty/java/src/net/i2p/servlet/filters/XSSFilter.java
- apps/jetty/java/src/net/i2p/servlet/filters/XSSRequestWrapper.java 63 additions, 0 deletions...y/java/src/net/i2p/servlet/filters/XSSRequestWrapper.java
- apps/routerconsole/jsp/web.xml 9 additions, 0 deletionsapps/routerconsole/jsp/web.xml
Loading
Please register or sign in to comment