Halaman utama Jelajahi Bantuan
Daftar Masuk
github
/
spring-security
cermin dari https://github.com/spring-projects/spring-security
2
0
Fork 0
Berkas Masalah 0 Wiki
Jelajahi Sumber

SEC-967: TextUtils.java does not escape ampersand character
http://jira.springframework.org/browse/SEC-967. Added escaping of '&' character

Luke Taylor 17 tahun lalu
induk
d781deffe7
melakukan
4e2d6f8b2e
1 mengubah file dengan 2 tambahan dan 0 penghapusan
Tampilan Split Tampilkan Statistik Diff
  1. 2 0
      core/src/main/java/org/springframework/security/util/TextUtils.java

+ 2 - 0
core/src/main/java/org/springframework/security/util/TextUtils.java
Tampilan Berkas 

@@ -26,6 +26,8 @@ public abstract class TextUtils {
 
                 sb.append(""");
 
             } else if (c == '\'') {
 
                 sb.append("'");
 
+            } else if (c == '&') {
 
+                sb.append("&");
 
             } else {
 
                 sb.append(c);
 
             }