Hi, how can I secure data coming from a WYSIWYG editor? I want to allow user to change properties of the text but not to link images or add scripts to his post. I'll use this feature to allow user to add comment or compile complex pages. I'm not worried about data coming from the editor but data that a malicious user can send me from a modified page Does Struts 2 has any interceptor that implements this kind of feature? Does anyone has experience on this task?
Simone Buzzi
