OWASP/owasp-java-encoder
The OWASP Java Encoder is a Java 1.5+ simple-to-use drop-in high-performance encoder class with no dependencies and little baggage. This project will help Java web developers defend against Cross Site Scripting!
JavaBSD-3-Clause
Issues
- 1
Add an XML 1.1 encoder
#73 opened by paul-redwood - 2
Confusing example in Encode.forHtmlAttribute docs
#71 opened by meeque - 4
Combining OWASP Sanitizer and Encoder
#69 opened by bmscodespace - 6
Compile error
#63 opened by SOLcoelle - 3
I couldn't sanitize the vector "<%<!--'%><script>alert(1);</script -->", using the methods available in "encoder-1.2.3.jar".
#68 opened by ricardonostrum - 0
Automatic module name not included in manifest
#66 opened by afloarea - 4
- 5
Create a encodeForJSON() function
#36 opened by jmanico - 0
- 1
- 3
- 6
log4j 1.2.17 dependency
#60 opened by l00zak - 6
- 12
Please sign the jar
#48 opened by arnoldgeels - 7
Encode.forJavaScript()
#32 opened by ndp-opendap - 4
Javadoc link is broken
#53 opened by rob-dotmatics - 1
Correct javadoc for Encode class
#51 opened by kwwall - 2
Possible to inject expression property resulting XSS attack in IE browser by using certain document modes
#47 opened by vijaysn2702 - 4
Create an encodeForEmail() function
#46 opened by skotfred - 9
Create encode for URL function
#42 opened by ropnop - 1
- 6
Support for input canonicalization
#43 opened by forgedhallpass - 5
Configuring exclusions for `Encode.forHtml()`
#38 opened by sgsvnk - 1
Rename main branch
#41 opened by jeremylong - 7
- 1
Links of OWASP Java Encoder mailing list at https://owasp.org/www-project-java-encoder/migrated_content is not working
#35 opened by cdwijayarathna - 3
Grave accent issue
#33 opened by fraenku - 9
Transitive dependency on esapi
#30 opened by fransonsr - 4
FEature: RegEx encoder
#29 opened by Weltraumschaf - 2
- 1
All-in-one version with shaded guava
#26 opened by cnsgithub - 4
Include license in JAR
#12 opened by cnsgithub - 2
- 8
- 3
- 6
Implement Encode.forJSON()
#16 opened by OpenGG - 2
- 3
Unable to load tag handler class "org.owasp.encoder.tag.ForHtmlTag" for tag "e:forHtml"
#17 opened by CCninja86 - 6
Javascript encoding does not follow the recommendations of the OWASP XSS Prevention Cheat Sheet
#14 opened by rshanlever - 4
HTML encoding for KML: option to use numeric character entities instead of entity references?
#20 opened by cnsgithub - 1
- 5
DOM XSS - Documentation
#13 opened - 3
- 9
Method to neutralize data recorded in logs?
#11 opened by katyanton - 2
unescape functions
#15 opened by maxmeout - 10
General questions - Core java library
#10 opened - 6
Can i compile the project with j2sdk1.4.2_19
#8 opened by talasila66 - 15
Backslash inserted when using Encode#forJavaScript to encode a String with a hyphen in it
#7 opened by InfiniteLoop90 - 4
How can I escape Javascript numbers on JSP files (as forJavaScript() doesn't work for negative numbers)?
#6 opened by Kacper86 - 1