How to solve the problem of double encoding
2MoonStop opened this issue · comments
When I pass in the value of "%27%Balert%28361%29%2B%27", it cannot handle this value.
look forward to your reply
what should i do? first of all decode this value?
That's probably covered in: https://cheatsheetseries.owasp.org/cheatsheets/Cross_Site_Scripting_Prevention_Cheat_Sheet.html
If you want to discuss further I'd suggest posting to #appsec on the OWASP slack. (Self invite here)