Issues

User session just jumped from unknown to 0:0:0:0:0:0:0:1

EncryptedPropertiesUtils Switch for Adding Values

HTTPParameterValue

HttpParamtervalue for allowing Xml Data

-Log4JLogger.java doesn't output correct file & line number-Similar issue as reported in Issue 268

Performance

Regex in ESAPI.properties is not considering few of the french characters

logger is gettin class cast exception

Content Security Policy - Java Servlet Filter

Log4j configuration with no root level causes NPE in Log4jLogger.java

setHeader blocks legitimate headers due to header name size limit being too low

AbstractAccessReferenceMap.addDirectReference not invariant

StringUtils.union broken which has minor impact on CSRF Protection and random file name generation

Construct "&" in Validator.URL is simple character class, not reference to ampersand

Patch for /trunk/src/main/java/org/owasp/esapi/codecs/HTMLEntityCodec.java

ClassCastException on SecurityWrapperResponse

ClassCastException during web application redeploy due to the grift logging classes

PolicyFactory Sanitize method weird output

RequestRateThrottleFilter may not work as expected with hits=1 or hits=2

Unsynchronized get method, synchronized set method

Incorrect lazy initialization of static field instance

Resource leak: FileInputStream is not closed on method exit

Incorrect Equality test on floating point values

Resource leak: This FileReader is not closed on method exit