Cwikius-Spring/spring-security
1
0
Fork 0
mirror of https://github.com/spring-projects/spring-security.git synced 2025-06-27 06:12:27 +00:00
Code Issues Packages Projects Releases Wiki Activity

SEC-967: TextUtils.java does not escape ampersand character

Browse Source 
http://jira.springframework.org/browse/SEC-967. Added escaping of '&' character
This commit is contained in:
Luke Taylor 2008-08-29 12:01:45 +00:00
parent d781deffe7
commit 4e2d6f8b2e
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
core/src/main/java/org/springframework/security/util/TextUtils.java
View File

@ -26,6 +26,8 @@ public abstract class TextUtils {
sb.append("""); sb.append(""");
} else if (c == '\'') { } else if (c == '\'') {
sb.append("'"); sb.append("'");
} else if (c == '&') {
sb.append("&");
} else { } else {
sb.append(c); sb.append(c);
} }