Slash has to be double encoded in URLs

Details

Type: Bug
Status: Open
Priority: Minor
Resolution: Unresolved
Affects Version/s: 6.0.11 EE
Fix Version/s: 6.0.X EE
Component/s: WCM
Labels:
None

Branch Version/s:

6.0.x

Similar Issues:

Show 5 results

Description

When the / is in a value of an URL (e.g. a wiki page title), the friendly URL will contains a %2f character. When "%2f" is in the URL, tomcat rejects the request. The slash needs to be double encoded, so it will be %252f (%25 is %)

The tomcat "fix" of the security issue is here:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0450

Activity

Hide

Permalink

Edward Gonzales added a comment - 20/Mar/13 11:38 AM

Hello! We are in the process of removing the "General" component all together. Please help us by removing "General" from the component field and applying a relevant component. Thanks in advance for your help. formercomponentgeneral03202013EG

Show

Edward Gonzales added a comment - 20/Mar/13 11:38 AM Hello! We are in the process of removing the "General" component all together. Please help us by removing "General" from the component field and applying a relevant component. Thanks in advance for your help. formercomponentgeneral03202013EG

People

Assignee:

SE Support

Reporter:

Zsolt Balogh

Participants of an Issue:

Edward Gonzales, SE Support, Zsolt Balogh

Vote (0)

Watch (0)

Dates

Created:

13/Apr/11 5:35 AM

Updated:

02/Apr/13 12:36 PM

Days since last comment:

8 weeks, 6 days ago

Agile

View on Board

~~LPS-18199~~	JS file path has double forward slash
LPS-25103	Double slashes "//" in portal URL returns null for request.getRemoteUser()
~~LPS-13455~~	wsrp-navigational parameter is double encoded
~~LPS-25034~~	Double slashes "//" in URL for JSONWS calls returns an empty array
~~LPS-13831~~	Allow multiple slashes in friendly URLs