1 Here is a good and simple anti cross-site scripting (XSS) filter written for Java web applications.
2 You should configure it as the first filter in your chain (web.xml) and it’s generally a good idea to let it catch every request made to your site.
3 expressions scriptPattern = Pattern.compile("vbscript:", Pattern.CASE_INSENSITIVE); value = scriptPattern.matcher(value).replaceAll(""); // Avoid on..
트위터 반응

@beyondj2ee: XSS는 자바스크립트를 통한 보안 공격. 실무에서 필수 체크 사항!! 간단 서블릿 필터 Anti cross-site scripting (XSS) filter for Java web apps http://t.co/R6bzH95V @myen

@enterprise4j: XSS는 자바스크립트를 통한 보안 공격. 실무에서 필수 체크 사항!! 간단 서블릿 필터 Anti cross-site scripting (XSS) filter for Java web apps http://t.co/4bWAPlWg @myen