From e16302f9d475c7cc4dd18c5abf1a23cb5502e362 Mon Sep 17 00:00:00 2001
From: whyclxw <810412026@qq.com>
Date: 星期三, 28 五月 2025 14:57:56 +0800
Subject: [PATCH] 密码验证加-

---
 src/main/java/com/whyc/filter/XssHttpServletRequestWrapper.java |    6 +++---
 1 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/src/main/java/com/whyc/filter/XssHttpServletRequestWrapper.java b/src/main/java/com/whyc/filter/XssHttpServletRequestWrapper.java
index aa7928d..a9aad8e 100644
--- a/src/main/java/com/whyc/filter/XssHttpServletRequestWrapper.java
+++ b/src/main/java/com/whyc/filter/XssHttpServletRequestWrapper.java
@@ -136,7 +136,7 @@
             value = ESAPI.encoder().canonicalize(value);
 
             // 閬垮厤绌哄瓧绗︿覆
-            value = value.replaceAll(" ", "");
+            //value = value.replaceAll(" ", "");
 
             // 鍒犻櫎 '
             value = value.replaceAll("'","");
@@ -180,8 +180,8 @@
             value = scriptPattern.matcher(value).replaceAll("");
 
             // 閬垮厤 onXX= 琛ㄨ揪寮�
-            scriptPattern = compile("on.*(.*?)=", CASE_INSENSITIVE | MULTILINE | DOTALL);
-            value = scriptPattern.matcher(value).replaceAll("");
+            /*scriptPattern = compile("on.*(.*?)=", CASE_INSENSITIVE | MULTILINE | DOTALL);
+            value = scriptPattern.matcher(value).replaceAll("");*/
 
         }
         return value;

--
Gitblit v1.9.1