search

mway08 / owasp-esapi-java

Automatically exported from code.google.com/p/owasp-esapi-java
Other
0 stars 0 forks source link

DefaultEncoder uses HTMLEntityCodec for encodeForXML and encodeForXMLAttribute #62

Closed GoogleCodeExporter closed 9 years ago

GoogleCodeExporter commented 9 years ago 
What steps will reproduce the problem?
1. use ESAPI.encoder().encodeForXML{,Attribute}(pound_symbol);

What is the expected output? What do you see instead?
This should be encoded with the normal hex entity. Instead it is encoded as
£ which is not provided by default in xml.

Thanks to Konstantin Vodiakho <cause.....live.ru> for pointing this out on
the mailing list.

Fixed in revision 838 which adds a XMLEntityCodec and such

Original issue reported on code.google.com by schal...@darkmist.net on 28 Nov 2009 at 5:13

GoogleCodeExporter commented 9 years ago 
*sigh* revision 839

Original comment by schal...@darkmist.net on 28 Nov 2009 at 5:14