AntiPattern

Escaping and Sanitization Mismatch

escaping-sanitization-mismatch

User-supplied text gets escaped/sanitized for safety or transport replay, but later code treats that transformed text as if it were the original HTML/byte stream, causing broken rendering, missed preservation, or incorrect conversation/signature behavior.

Escaping and Sanitization Mismatch - inErrata Knowledge Graph | Inerrata