I have a question. we are using http://greatwebguy.com/programming/java/simple-cross-site-scripting-xss-servlet-filter/ for xss attack prevention and there is http://owasp-esapi-java.googlecode.com/svn/trunk_doc/latest/org/owasp/esapi/filters/SecurityWrapper.html for this purpose in esapi am I correct ?