Uploaded image for project: 'RESTEasy'
  1. RESTEasy
  2. RESTEASY-1553

MessageSanitizerContainerResponseFilter doesn't check the Content-Type header before escaping

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Blocker Blocker
    • 3.1.0.Final, 3.0.20.Final
    • None
    • None
    • None

      The MessageSanitizerContainerResponseFilter escapes all entities regardless of the Content-Type header. The header should probably be checked and only the HTML/XML only escaped on specific media types.

            rsearls r searls
            jperkins-rhn James Perkins
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated:
              Resolved: