Am 2010-11-25 16:15, schrieb Ian Marshall:
If a user has entered some HTML in a TextField or TextArea<String> when I do not want HTML to be entered, what is a good way to prevent this?
In our project we are using OWASP Antisamy to prevent XSS attacks. It is easy to use, has a couple templates (slashdot, ebay,..) and works like a charm.
http://www.owasp.org/index.php/Category:OWASP_AntiSamy_Project http://code.google.com/p/owaspantisamy/ Regards, Patrick --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org For additional commands, e-mail: users-h...@wicket.apache.org
