tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Mufaddal Khumri <>
Subject Suggestions ?
Date Thu, 31 Jul 2003 08:50:38 GMT

Am using tomcat 4.1.24.

Have a XYZ.jsp with a form on it take data from the user. Once the user 
clicks submit the data is stored in the  database and the data that the 
user entered is shown to him on  ABC.jsp.

The problem is that the user can enter anything in the text field and 
text area of the form on XYZ.jsp. For example in the description text 
area he or she might enter - text, an http url, maybe html tags etc. 
Now when i grab this data from the form and store it to the databse it 
works fine, but when i grab the data from the database and render it on 
ABC.jsp it gets messed up because the html tags in the data interfere 
with the html of the page. Is there a way in tomcat escape such 
characters or are there java methods that i could use to pass this 
string through that would do the escaping for me ?


To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message