[jira] [Created] (SLING-5659) XSS filter needed in DefaultGetServlet

[Amrit Verma (JIRA)]

Amrit Verma created SLING-5659:
----------------------------------

             Summary: XSS filter needed in DefaultGetServlet
                 Key: SLING-5659
                 URL: https://issues.apache.org/jira/browse/SLING-5659
             Project: Sling
          Issue Type: Improvement
          Components: Servlets
            Reporter: Amrit Verma


We need to xss filter the content returned from this servlet. If the servlet 
returns a JSON whose property contains html, that html needs to be escaped.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)