Stripes XSS Interceptor escapes all the parameters that Stripes binds during its Validation & Binding phase using a wrapped request object (a convenient implementation of the HttpServletRequest interface). The code follows the XSS (Cross Site Scripting) security guidance posted at Open Web Application Security Project (OWASP).
Use Patent Claims
These details are provided for information only. No information here is legal advice and should not be used as such.
There are no reported vulnerabilities