[Owasp-antisamy] AntiSAMY Defect

• Previous message: [Owasp-antisamy] AntiSAMY Defect
• Next message: [Owasp-antisamy] AntiSAMY Defect (Shishir Kumar)
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello Shishir,
I have reproduced the bug. Not sure why it doesn't appear on the  
server, but locally I get "Java heap space" message too.
I cut the code to spot the problem: <script>\"</script> this one  
throws the same error.

Arshan it looks like the code passes through Neko and error appears  
during the validation. It appears only inside <script> tag.
For example if we use: <style>\"</style> error does not appear.

Thank you,
Serge

On Sep 20, 2008, at 1:31 PM, Shishir Kumar wrote:

> <script type=\"text/javascript\">document.write(\"Hello World!\");</  
> script >

• Previous message: [Owasp-antisamy] AntiSAMY Defect
• Next message: [Owasp-antisamy] AntiSAMY Defect (Shishir Kumar)
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]