Index: webapps/manager/WEB-INF/jsp/sessionDetail.jsp =================================================================== --- webapps/manager/WEB-INF/jsp/sessionDetail.jsp (revision 1037768) +++ webapps/manager/WEB-INF/jsp/sessionDetail.jsp (working copy) @@ -30,9 +30,10 @@ <% String path = (String) request.getAttribute("path"); Session currentSession = (Session)request.getAttribute("currentSession"); HttpSession currentHttpSession = currentSession.getSession(); - String currentSessionId = currentSession.getId(); - String submitUrl = response.encodeURL(((HttpServletRequest) - pageContext.getRequest()).getRequestURL().toString()); + String currentSessionId = JspHelper.escapeXml(currentSession.getId()); + String submitUrl = JspHelper.escapeXml(response.encodeURL( + ((HttpServletRequest) pageContext.getRequest()).getRequestURI() + + "?path=" + path)); %>
@@ -46,7 +47,7 @@Guessed Locale | -<%= JspHelper.guessDisplayLocaleFromSession(currentSession) %> | +<%= JspHelper.escapeXml(JspHelper.guessDisplayLocaleFromSession(currentSession)) %> |
---|---|---|
Guessed User | @@ -89,7 +90,6 @@