Computerworld

IE URI encoding behavior facilitates XSS attacks, researchers say

An inconsistency in how Microsoft’s Internet Explorer (IE) encodes double quotes in URIs (uniform resource identifiers) can facilitate cross-site scripting (XSS) attacks, researchers from security ...
GitHub

Avoid encoding the same uri multiple times

When a URI is already encoded, you should avoid applying encodeURI again to prevent incorrect double encoding when there are spaces in the uri.
GitHub

[HTTP] Handle URI encoding according to the URI specification

There are few things we need to validate here, If set the and special character in the path value whats the behaviour. Ideally we should encoded it (if not) and then use it for dispatching logic. If ...
Ars Technica

Saving/encoding free-form text from webapp in URI?

I have a web application that allows the user to enter a query that gets sent to a backend server for processing. I would like to give the ability to link to this webapp such that the query is ...