Index: login.jsp =================================================================== RCS file: /cvsroot/lportal/portal/portal-web/docroot/html/portal/login.jsp,v retrieving revision 1.3 diff -u -r1.3 login.jsp --- login.jsp 17 Nov 2004 18:31:26 -0000 1.3 +++ login.jsp 16 Dec 2004 06:47:05 -0000 @@ -24,6 +24,8 @@ <%@ include file="/html/portal/init.jsp" %> +<%@ page import="com.liferay.util.Xss" %> + <% String cmd = ParamUtil.getString(request, "my_account_cmd"); @@ -40,6 +42,8 @@ } } +login = Xss.strip(login); + String password = request.getParameter(SessionParameters.get(request, "my_account_password")); if ((password == null) || (password.equals("null"))) { password = ""; @@ -258,7 +262,7 @@