lucene-solr-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Apache Wiki <wikidi...@apache.org>
Subject [Solr Wiki] Update of "SolrSecurity" by TomGullo
Date Thu, 18 Nov 2010 14:23:59 GMT
Dear Wiki user,

You have subscribed to a wiki page or wiki category on "Solr Wiki" for change notification.

The "SolrSecurity" page has been changed by TomGullo.
http://wiki.apache.org/solr/SolrSecurity?action=diff&rev1=17&rev2=18

--------------------------------------------------

  == Cross-Site Scripting (XSS) ==
  
  Solr has no known [[http://en.wikipedia.org/wiki/Cross-site_scripting|cross-site scripting
vulnerabilities]].
+ 
+ Quick XSS tip:
  
  What if you want the browser to indicate highlighted text, but you also want to protect
yourself from XSS and escape the HTML output.  One way to to  is to escape the HTML output
and then reapply the em tags for highlighting. 
  

Mime
View raw message