manager/my-worker
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

get cookie add xss

Browse Source
This commit is contained in:
thinkgem
2024-05-20 10:29:34 +08:00
parent 541656c60a
commit afdbef4f26
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
common/src/main/java/com/jeesite/common/web/CookieUtils.java
View File

@@ -116,6 +116,7 @@ public class CookieUtils {
for (Cookie cookie : cookies) { for (Cookie cookie : cookies) {
if (cookie.getName().equals(name)) { if (cookie.getName().equals(name)) {
value = EncodeUtils.decodeUrl(cookie.getValue()); value = EncodeUtils.decodeUrl(cookie.getValue());
value = EncodeUtils.xssFilter(value, request);
if (isRemove && response != null) { if (isRemove && response != null) {
cookie.setPath(path); cookie.setPath(path);
cookie.setMaxAge(0); cookie.setMaxAge(0);