Details
-
Bug
-
Status: Closed
-
Major
-
Resolution: Fixed
-
XSS Protection API 2.0.4, XSS Protection API 2.0.6, XSS Protection API 2.0.8
-
None
Description
The fix introduced inĀ SLING-7323 allows IllegalArgumentException to be thrown in case a URL contains illegal hex escape characters. Instead of throwing a RuntimeException, the implementation should just return false and log the exception.