Hi,
I want to ask the community for the best recommended way to achieve HTML escaping in form input fields in Struts2… For output I know about escapeHtml attribute in s:property tag, but I don’t know if there is something like that ‘implemented’ for the input (some interceptor, validator type, …). Have somebody implemented a validator type (using regular expressions) that rejects problematic html characters to avoid XSS attacks?? --
