wpl

问题 I see that web protection library (WPL) comes with 2 different options: Security Runtime Engine (SRE) AntiXSS Library The first one seems great since no code is necessary, it's a HTTPModule. The second requires to manually add the escaping logic on the code. Despite this advantage I mentioned, SRE is not very popular and I'm wondering why. There is any known problem with this library or any big advantage of using AntiXSS that I'm not seeing? Thanks! 回答1: The biggest flaw I see in the SRE is