diff options
author | sm921c <sm921c@att.com> | 2018-04-04 15:09:15 -0400 |
---|---|---|
committer | sm921c <sm921c@att.com> | 2018-04-04 15:09:15 -0400 |
commit | 3cea65c213e29b9086e9a2e4aae910cff00e7a93 (patch) | |
tree | 3864a5cec4b916557b73f97380e348e043347f75 /ecomp-sdk/epsdk-analytics/src | |
parent | 7d359877a4ab4b4821bab46c0f28fddf7cfbd35f (diff) |
security and Pom chanagesrelease-2.1.1
Issue-ID: PORTAL-155
provided fixes for security issues
Change-Id: I00a06dffe4c6efecff57272949fea9d0a614018c
Signed-off-by: sm921c <sm921c@att.com>
Diffstat (limited to 'ecomp-sdk/epsdk-analytics/src')
-rw-r--r-- | ecomp-sdk/epsdk-analytics/src/main/java/org/onap/portalsdk/analytics/model/SearchHandler.java | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/ecomp-sdk/epsdk-analytics/src/main/java/org/onap/portalsdk/analytics/model/SearchHandler.java b/ecomp-sdk/epsdk-analytics/src/main/java/org/onap/portalsdk/analytics/model/SearchHandler.java index 863f510c..9f44bac7 100644 --- a/ecomp-sdk/epsdk-analytics/src/main/java/org/onap/portalsdk/analytics/model/SearchHandler.java +++ b/ecomp-sdk/epsdk-analytics/src/main/java/org/onap/portalsdk/analytics/model/SearchHandler.java @@ -295,7 +295,7 @@ public class SearchHandler extends org.onap.portalsdk.analytics.RaptorObject { } else { rep_name_sql = " AND UPPER(cr.title) LIKE UPPER('%%') "; } - sql = sql.replace("[fReportName]",rep_name_sql); + sql = sql.replace("[fReportName]", ESAPI.encoder().canonicalize(rep_name_sql)); if (menuId.length() > 0){ /*sql += "AND INSTR('|'||cr.menu_id||'|', '|'||'" + menuId + "'||'|') > 0 " |