[OWASP-ESAPI] Two questionable Regex in default ESAPI.propertiesfile

Jim Manico jim.manico at owasp.org
Wed Aug 5 18:40:04 EDT 2009


I've also had to modify the URL regEx to include "(" and ")" - I imagine it could use more changes.

I have not added this to trunk yet, but I will... You might want to include it in the quality branch...
Validator.URL=^(ht|f)tp(s?)\\:\\/\\/[0-9a-zA-Z]([-.\\w]*[0-9a-zA-Z])*(:(0-9)*)*(\\/?)([a-zA-Z0-9\\(\\)\\-\\.\\?\\,\\:\\'\\/\\\\\\+=&%\\$#_]*)?$
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-esapi/attachments/20090805/87d5132f/attachment.html 


More information about the OWASP-ESAPI mailing list