Proxy Exception

Posted on 2004-11-11
Last Modified: 2012-08-14
403: Access Forbidden
Due to the presence of characters known to be used in Cross Site Scripting attacks, access is forbidden. This web site does not allow Urls which might include embedded HTML tags.

I am using Struts and when i try to search with O'Brian, it pulls some results and when i say next(page), i am getting the above error. Somehow my proxy server is restricting apostrophe, is there anyway to overcome this problem in my application?? I would appreciate if anybody help on this...

Question by:prreddy
    LVL 53

    Accepted Solution

    You will probably have to modify your filters. The appostrophy is also a single quote character, and both single and double quotes will generally trigger a 403, or at least be escaped. If you are using BadInputFilterValues on a Tomcat, you wil probably have to add a regular expression to the allow attributes of your filters.

    I'm not a real expert on Struts or JAVA app servers,  for that matter, but logically that would seem to be the route you have to go.

    LVL 53

    Expert Comment

    I think I answered it, as the user did not ask for any further assistance.


    Featured Post

    Looking for New Ways to Advertise?

    Engage with tech pros in our community with native advertising, as a Vendor Expert, and more.

    Join & Write a Comment

    Building “do-it-yourself” web sites has become an epidemic. There are so many blogs, web sites and even books that "teach" you how to build your web site in a few extremely simple and easy steps. Building a web site has become easier than boiling an…
    Accessibility and Usability are two concepts that seem to be closely related.  But, too many people seem to have a distorted perception of them. During last five years, those two words have come to the day-to-day work of almost every web develope…
    Explain concepts important to validation of email addresses with regular expressions. Applies to most languages/tools that uses regular expressions. Consider email address RFCs: Look at HTML5 form input element (with type=email) regex pattern: T…
    Any person in technology especially those working for big companies should at least know about the basics of web accessibility. Believe it or not there are even laws in place that require businesses to provide such means for the disabled and aging p…

    730 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    17 Experts available now in Live!

    Get 1:1 Help Now