Adobe Experience Manager Sites & More

ariesyinn · 2/28/21

Hi ,

May I know how to prevent injecting HTML? I am using AEM 6.2.

Ravi_Pampana · 3/1/21

Hi,

Usually html injection can happen by either url or user input data. We need to check for the html tags and encode them to make sure they are consider as string instead of html tags.

Take a look at below link for additional details

https://www.softwaretestinghelp.com/html-injection-tutorial/

View solution in original post

Ravi_Pampana · 3/1/21

Hi,

Usually html injection can happen by either url or user input data. We need to check for the html tags and encode them to make sure they are consider as string instead of html tags.

Take a look at below link for additional details

https://www.softwaretestinghelp.com/html-injection-tutorial/

Jaideep_Brar · 3/1/21

Apply the latest hotfix and use the Adobe recommended security configs: https://experienceleague.adobe.com/docs/experience-manager-64/administering/security/security-checkl...

Lastly, AEM 6.2 has been out of support for a long time and the best option will be to move to 6.5 Or AEM Cloud.

ariesyinn · 3/1/21

Hi jbrar, I understand AEM6.2 is out of support and we are planning to upgrade. But, as this is very important security, we need to prevent this. May I know how to resolve this?

Adobe Experience Manager Sites & More

HTML injection

Learn

Documentation

Community

Support

Resources

Adobe account

Adobe