2018-02-28 17:55 GMT+01:00 Emi <[hidden email]>:
> There is a topic about Parameter Validation Filter (TrimTextValidationRule,
> FailIfNotCanonicalizedValidationRule, FailIfContainsHTMLValidationRule) for
> servlet (https://www.owasp.org/index.php/Parameter_Validation_Filter).
> I just want to know that struts220.127.116.11 already have these kinds of
> validation set by default and no need to add pvf.xml anymore, right?
No, I mean, Struts do not perform such validations automatically.