...
Character | Name |
|---|---|
' and " | Single and double quote |
/ and \ | Forward-slash and back-slash |
\ \ | Double slashes* |
space | Space character at beginning or end of string |
# | Hash character at the beginning of the string |
< and > | Angle brackets |
, and ; | Comma and semi-colon |
+ and * | Addition and multiplication operators |
( and ) | Round braces |
\u0000 | Unicode NULL character |
* This is a character sequence
Noncompliant Code Example
...
This compliant solution uses a white-list to validate user input so that only valid characters appear in the filter string. For example, userSN may contain only letters and spaces whereas a password may also contain alphanumeric characters.
...