Top "Esapi" questions

Trying to use ESAPI getValidInput but getting error

The following error is being generated while trying to validate an input: org.owasp.esapi.errors.ConfigurationException: java.lang.reflect.…

validation esapi

OWASP-ESAPI logger help needed

In my current project I am using Maven and Spring. I am currently using SLF4J logger for logging services. …

logging owasp esapi

Encoder and canonicalize in ESAPI

I understand what ESAPI is used for, but I see these two lines repeated in a lot of ESAPI examples. …

java esapi

XSS filter to remove all scripts

I am implementing an XSS filter for my web application and also using the ESAPI encoder to sanitise the input. …

java regex security xss esapi

Cross-Site Scripting: Poor Validation (Input Validation and Representation, Data Flow)

I have scan my application in HP fortify portal and getting an issue Cross-Site Scripting: Poor Validation (Input Validation and …

java struts fortify esapi

Where is the ESAPI documentation located?

I'm interested in ESAPI to use in a production environment. Is there any official documentation on how to setup properly …

owasp esapi

How to resolve External Control of File Name or Path (CWE ID 73)

I am working on fixing Veracode issues in my application. Veracode has highlighted the flaw "External Control of File Name …

java security esapi veracode

ESAPI - Getting NoClassDefFoundError (LoggerFactory) with banned dependency

I am using espaiESAPI to encode string value to resolve cross site scripting issue as shown below (code snippet). String …

java maven dependencies esapi

How to use Encode.forHtml() in a javascript file?

I need to use the Encode.forHtml() in a js file. i'm using the jar Recommended by OWASP - encoder-1.2.…

javascript xss owasp esapi cross-site

Error when using Esapi validation

I hope someone could help me with some issue. I'm using OWASP ESAPI 2.1.0 with JavaEE, to help me to validate …

java regex validation owasp esapi