From 16c3995a89892b1dad4dab7df0f6200ac8b09f92 Mon Sep 17 00:00:00 2001
From: Raviteja Cherughattu <rc835m@att.com>
Date: Wed, 27 May 2020 12:08:55 -0500
Subject: Medium Vulnerabilities CodeFix: 1. URL Redirection 2. AAF-1111

Issue-ID: AAF-1115
Change-Id: I05d8d7a19236ad476d2a37b51a6c4a84ba2b8546
Signed-off-by: Raviteja Cherughattu <rc835m@att.com>
---
 misc/xgen/src/main/java/org/onap/aaf/misc/xgen/Section.java | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

(limited to 'misc/xgen/src/main')

diff --git a/misc/xgen/src/main/java/org/onap/aaf/misc/xgen/Section.java b/misc/xgen/src/main/java/org/onap/aaf/misc/xgen/Section.java
index 9f1f2a38..0d41bd9b 100644
--- a/misc/xgen/src/main/java/org/onap/aaf/misc/xgen/Section.java
+++ b/misc/xgen/src/main/java/org/onap/aaf/misc/xgen/Section.java
@@ -28,6 +28,7 @@ import org.onap.aaf.misc.env.APIException;
 import org.onap.aaf.misc.env.Env;
 import org.onap.aaf.misc.env.Trans;
 import org.onap.aaf.misc.xgen.html.State;
+import org.owasp.encoder.Encode;
 
 public class Section<G extends XGen<G>> {
     protected int indent;
@@ -48,11 +49,11 @@ public class Section<G extends XGen<G>> {
     }
 
     public void forward(Writer w) throws IOException {
-        w.write(forward);
+    	w.write(Encode.forJava(forward));
     }
     
     public void back(Writer w) throws IOException {
-        w.write(backward);
+    	w.write(Encode.forJava(backward));
     }
     
     public String toString() {
-- 
cgit 1.2.3-korg